Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)
2014-01-05T00:00:00
ID UBUNTU_USN-2066-1.NASL Type nessus Reporter Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof. Modified 2020-01-02T00:00:00
Description
A flaw was discovered in the Linux kernel
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2066-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include("compat.inc");
if (description)
{
script_id(71793);
script_version("1.13");
script_cvs_date("Date: 2019/09/19 12:54:29");
script_cve_id("CVE-2013-4299", "CVE-2013-4470", "CVE-2013-4511", "CVE-2013-4514", "CVE-2013-4515", "CVE-2013-4592", "CVE-2013-6378", "CVE-2013-6383", "CVE-2013-6763", "CVE-2013-7027");
script_bugtraq_id(63183, 63359, 63509, 63512, 63518, 63707, 63790, 63886, 63888, 64013);
script_xref(name:"USN", value:"2066-1");
script_name(english:"Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)");
script_summary(english:"Checks dpkg output for updated packages.");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Ubuntu host is missing one or more security-related
patches."
);
script_set_attribute(
attribute:"description",
value:
"A flaw was discovered in the Linux kernel's dm snapshot facility. A
remote authenticated user could exploit this flaw to obtain sensitive
information or modify/corrupt data. (CVE-2013-4299)
Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP
Fragmentation Offload (UFO). An unprivileged local user could exploit
this flaw to cause a denial of service (system crash) or possibly gain
administrative privileges. (CVE-2013-4470)
Multiple integer overflow flaws were discovered in the Alchemy LCD
frame- buffer drivers in the Linux kernel. An unprivileged local user
could exploit this flaw to gain administrative privileges.
(CVE-2013-4511)
Nico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's
driver for Agere Systems HERMES II Wireless PC Cards. A local user
with the CAP_NET_ADMIN capability could exploit this flaw to cause a
denial of service or possibly gain administrative priviliges.
(CVE-2013-4514)
Nico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's
driver for Beceem WIMAX chipset based devices. An unprivileged local
user could exploit this flaw to obtain sensitive information from
kernel memory. (CVE-2013-4515)
A flaw in the handling of memory regions of the kernel virtual machine
(KVM) subsystem was discovered. A local user with the ability to
assign a device could exploit this flaw to cause a denial of service
(memory consumption). (CVE-2013-4592)
Nico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's
debugfs filesystem. An administrative local user could exploit this
flaw to cause a denial of service (OOPS). (CVE-2013-6378)
A flaw was discovered in the Linux kernel's compat ioctls for Adaptec
AACRAID scsi raid devices. An unprivileged local user could send
administrative commands to these devices potentially compromising the
data stored on the device. (CVE-2013-6383)
Nico Golde reported a flaw in the Linux kernel's userspace IO (uio)
driver. A local user could exploit this flaw to cause a denial of
service (memory corruption) or possibly gain privileges.
(CVE-2013-6763)
Evan Huus reported a buffer overflow in the Linux kernel's radiotap
header parsing. A remote attacker could cause a denial of service
(buffer over- read) via a specially crafted header. (CVE-2013-7027).
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://usn.ubuntu.com/2066-1/"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.04:-:lts");
script_set_attribute(attribute:"vuln_publication_date", value:"2013/10/24");
script_set_attribute(attribute:"patch_publication_date", value:"2014/01/03");
script_set_attribute(attribute:"plugin_publication_date", value:"2014/01/05");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Ubuntu Local Security Checks");
script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("ubuntu.inc");
include("ksplice.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(12\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 12.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);
if (get_one_kb_item("Host/ksplice/kernel-cves"))
{
rm_kb_item(name:"Host/uptrack-uname-r");
cve_list = make_list("CVE-2013-4299", "CVE-2013-4470", "CVE-2013-4511", "CVE-2013-4514", "CVE-2013-4515", "CVE-2013-4592", "CVE-2013-6378", "CVE-2013-6383", "CVE-2013-6763", "CVE-2013-7027");
if (ksplice_cves_check(cve_list))
{
audit(AUDIT_PATCH_INSTALLED, "KSplice hotfix for USN-2066-1");
}
else
{
_ubuntu_report = ksplice_reporting_text();
}
}
flag = 0;
if (ubuntu_check(osver:"12.04", pkgname:"linux-image-3.2.0-58-generic", pkgver:"3.2.0-58.88")) flag++;
if (ubuntu_check(osver:"12.04", pkgname:"linux-image-3.2.0-58-generic-pae", pkgver:"3.2.0-58.88")) flag++;
if (ubuntu_check(osver:"12.04", pkgname:"linux-image-3.2.0-58-highbank", pkgver:"3.2.0-58.88")) flag++;
if (ubuntu_check(osver:"12.04", pkgname:"linux-image-3.2.0-58-virtual", pkgver:"3.2.0-58.88")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux-image-3.2-generic / linux-image-3.2-generic-pae / etc");
}
{"id": "UBUNTU_USN-2066-1.NASL", "bulletinFamily": "scanner", "title": "Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)", "description": "A flaw was discovered in the Linux kernel", "published": "2014-01-05T00:00:00", "modified": "2020-01-02T00:00:00", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}, "href": "https://www.tenable.com/plugins/nessus/71793", "reporter": "Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://usn.ubuntu.com/2066-1/"], "cvelist": ["CVE-2013-7027", "CVE-2013-6383", "CVE-2013-6378", "CVE-2013-4515", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4514", "CVE-2013-6763", "CVE-2013-4470", "CVE-2013-4299"], "type": "nessus", "lastseen": "2020-01-01T02:11:56", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "cvelist": ["CVE-2013-7027", "CVE-2013-6383", "CVE-2013-6378", "CVE-2013-4515", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4514", "CVE-2013-6763", "CVE-2013-4470", "CVE-2013-4299"], "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}, "description": "A flaw was discovered in the Linux kernel", "edition": 12, "enchantments": {"dependencies": {"modified": "2019-12-13T09:44:56", "references": [{"idList": ["OPENVAS:1361412562310841677", "OPENVAS:1361412562310841674", "OPENVAS:1361412562310841673", "OPENVAS:1361412562310841671", "OPENVAS:841673", "OPENVAS:1361412562310841680", "OPENVAS:841680", "OPENVAS:841677", "OPENVAS:841674", "OPENVAS:841678"], "type": "openvas"}, {"idList": ["UBUNTU_USN-2071-1.NASL", "UBUNTU_USN-2042-1.NASL", "UBUNTU_USN-2040-1.NASL", "SUSE_SU-2014-0189-1.NASL", "UBUNTU_USN-2073-1.NASL", "SUSE_11_KERNEL-140116.NASL", "UBUNTU_USN-2043-1.NASL", "MANDRIVA_MDVSA-2013-291.NASL", "UBUNTU_USN-2068-1.NASL", "UBUNTU_USN-2069-1.NASL"], "type": "nessus"}, {"idList": ["CVE-2013-7027", "CVE-2013-6383", "CVE-2013-6378", "CVE-2013-4515", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4514", "CVE-2013-6763", "CVE-2013-4470", "CVE-2013-4299"], "type": "cve"}, {"idList": ["USN-2069-1", "USN-2066-1", "USN-2076-1", "USN-2042-1", "USN-2073-1", "USN-2072-1", "USN-2071-1", "USN-2068-1", "USN-2067-1", "USN-2074-1"], "type": "ubuntu"}, {"idList": ["SECURITYVULNS:VULN:13438", "SECURITYVULNS:DOC:30152", "SECURITYVULNS:DOC:30130"], "type": "securityvulns"}]}, "score": {"modified": "2019-12-13T09:44:56", "value": 6.1, "vector": "NONE"}}, "hash": "87180715d4247df6317883c87054a6dc9ce61a06503984b6263bf7ba8aeeb9c4", "hashmap": [{"hash": "4630e7da2fde8fd05bc0f28b8d0b71e1", "key": "reporter"}, {"hash": "10bcaa6967caa679f7eeb2b6f3bdeb4a", "key": "references"}, {"hash": "e285141e85dd2ef2b67cbd8cea013234", "key": "cvelist"}, {"hash": "7d09d4f5a5bc8ab20cc4e495ef7c8ce7", "key": "pluginID"}, {"hash": "d2a6119ef877eb235aefb96a1b53bab3", "key": "description"}, {"hash": "584146a6771679e1f8a19a6e44786f1f", "key": "cpe"}, {"hash": "0db0e6a320a94fe8f83e40cd33751628", "key": "sourceData"}, {"hash": "1f5f3c603b3389b3012aff031335b113", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "97caeba5ad604b4c45004709f41e6cec", "key": "title"}, {"hash": "5a7504dfe859a7ccbaf560628f6442ad", "key": "modified"}, {"hash": "d5f1840e27443eb2d6a17b941080264e", "key": "cvss"}, {"hash": "1ea5e89e0e5fc10432f5fd731f40a114", "key": "href"}], "history": [], "href": "https://www.tenable.com/plugins/nessus/71793", "id": "UBUNTU_USN-2066-1.NASL", "lastseen": "2019-12-13T09:44:56", "modified": "2019-12-02T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "71793", "published": "2014-01-05T00:00:00", "references": ["https://usn.ubuntu.com/2066-1/"], "reporter": "Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2066-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71793);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(63183, 63359, 63509, 63512, 63518, 63707, 63790, 63886, 63888, 64013);\n script_xref(name:\"USN\", value:\"2066-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to\nassign a device could exploit this flaw to cause a denial of service\n(memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this\nflaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2066-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/10/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2066-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic-pae\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-highbank\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-virtual\", pkgver:\"3.2.0-58.88\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.2-generic / linux-image-3.2-generic-pae / etc\");\n}\n", "title": "Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)", "type": "nessus", "viewCount": 3}, "differentElements": ["modified"], "edition": 12, "lastseen": "2019-12-13T09:44:56"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "cvelist": ["CVE-2013-7027", "CVE-2013-6383", "CVE-2013-6378", "CVE-2013-4515", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4514", "CVE-2013-6763", "CVE-2013-4470", "CVE-2013-4299"], "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "A flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine (KVM) subsystem was discovered. A local user with the ability to assign a device could exploit this flaw to cause a denial of service (memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's debugfs filesystem. An administrative local user could exploit this flaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "0f5169b0ee9e904fb503e8b924e301a2864b13f400408bdc0822d51837f27fd6", "hashmap": [{"hash": "e285141e85dd2ef2b67cbd8cea013234", "key": "cvelist"}, {"hash": "7d09d4f5a5bc8ab20cc4e495ef7c8ce7", "key": "pluginID"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "584146a6771679e1f8a19a6e44786f1f", "key": "cpe"}, {"hash": "e8bafdc9ad5c6f47fe1e6e5fd509b7a9", "key": "cvss"}, {"hash": "1f5f3c603b3389b3012aff031335b113", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "745ae31f01be17f43c43efbd2f8ea03a", "key": "description"}, {"hash": "f7e90627a7b878bfb860a2eadcfa74ef", "key": "href"}, {"hash": "97caeba5ad604b4c45004709f41e6cec", "key": "title"}, {"hash": "bffd955f0145ad6e7510952b68faacea", "key": "sourceData"}, {"hash": "21fc9686c146fcf6b16f09134dff3269", "key": "modified"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=71793", "id": "UBUNTU_USN-2066-1.NASL", "lastseen": "2018-08-05T12:19:13", "modified": "2018-08-03T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "71793", "published": "2014-01-05T00:00:00", "references": [], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2066-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71793);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/08/03 12:21:24\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(63183, 63359, 63509, 63512, 63518, 63707, 63790, 63886, 63888, 64013);\n script_xref(name:\"USN\", value:\"2066-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to\nassign a device could exploit this flaw to cause a denial of service\n(memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this\nflaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2018 Canonical, Inc. / NASL script (C) 2014-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic-pae\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-highbank\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-virtual\", pkgver:\"3.2.0-58.88\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.2-generic / linux-image-3.2-generic-pae / etc\");\n}\n", "title": "Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)", "type": "nessus", "viewCount": 2}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-05T12:19:13"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "cvelist": ["CVE-2013-7027", "CVE-2013-6383", "CVE-2013-6378", "CVE-2013-4515", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4514", "CVE-2013-6763", "CVE-2013-4470", "CVE-2013-4299"], "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to\nassign a device could exploit this flaw to cause a denial of service\n(memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this\nflaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 8, "enchantments": {"dependencies": {"modified": "2019-01-16T20:17:46", "references": [{"idList": ["OPENVAS:1361412562310841677", "OPENVAS:1361412562310841674", "OPENVAS:1361412562310841673", "OPENVAS:1361412562310841669", "OPENVAS:841673", "OPENVAS:1361412562310841680", "OPENVAS:841680", "OPENVAS:841677", "OPENVAS:841674", "OPENVAS:841672"], "type": "openvas"}, {"idList": ["CVE-2013-7027", "CVE-2013-6383", "CVE-2013-6378", "CVE-2013-4515", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4514", "CVE-2013-6763", "CVE-2013-4470", "CVE-2013-4299"], "type": "cve"}, {"idList": ["USN-2069-1", "USN-2066-1", "USN-2076-1", "USN-2042-1", "USN-2073-1", "USN-2072-1", "USN-2071-1", "USN-2068-1", "USN-2067-1", "USN-2074-1"], "type": "ubuntu"}, {"idList": ["RHSA-2014:0100"], "type": "redhat"}, {"idList": ["UBUNTU_USN-2071-1.NASL", "UBUNTU_USN-2042-1.NASL", "UBUNTU_USN-2040-1.NASL", "UBUNTU_USN-2073-1.NASL", "SUSE_11_KERNEL-140116.NASL", "UBUNTU_USN-2043-1.NASL", "MANDRIVA_MDVSA-2013-291.NASL", "UBUNTU_USN-2068-1.NASL", "SUSE_SU-2014-0140-1.NASL", "UBUNTU_USN-2069-1.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:13438", "SECURITYVULNS:DOC:30152", "SECURITYVULNS:DOC:30130"], "type": "securityvulns"}]}, "score": {"value": 7.2, "vector": "NONE"}}, "hash": "7fc472c05c8603e0563b26421493810e8cc28df19f0f3a6c82a6e6b29f986871", "hashmap": [{"hash": "10bcaa6967caa679f7eeb2b6f3bdeb4a", "key": "references"}, {"hash": "e285141e85dd2ef2b67cbd8cea013234", "key": "cvelist"}, {"hash": "7d09d4f5a5bc8ab20cc4e495ef7c8ce7", "key": "pluginID"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "d04420d5731ec0e0678ee31543d62e85", "key": "sourceData"}, {"hash": "0b7bc3d628637c0ff555114c533a3dda", "key": "modified"}, {"hash": "584146a6771679e1f8a19a6e44786f1f", "key": "cpe"}, {"hash": "e8bafdc9ad5c6f47fe1e6e5fd509b7a9", "key": "cvss"}, {"hash": "1f5f3c603b3389b3012aff031335b113", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "f7e90627a7b878bfb860a2eadcfa74ef", "key": "href"}, {"hash": "97caeba5ad604b4c45004709f41e6cec", "key": "title"}, {"hash": "5ab8f2d0c1e9b36f3754b81c03c79264", "key": "description"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=71793", "id": "UBUNTU_USN-2066-1.NASL", "lastseen": "2019-01-16T20:17:46", "modified": "2018-12-01T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "71793", "published": "2014-01-05T00:00:00", "references": ["https://usn.ubuntu.com/2066-1/"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2066-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71793);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/12/01 13:19:08\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(63183, 63359, 63509, 63512, 63518, 63707, 63790, 63886, 63888, 64013);\n script_xref(name:\"USN\", value:\"2066-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to\nassign a device could exploit this flaw to cause a denial of service\n(memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this\nflaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2066-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic-pae\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-highbank\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-virtual\", pkgver:\"3.2.0-58.88\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.2-generic / linux-image-3.2-generic-pae / etc\");\n}\n", "title": "Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)", "type": "nessus", "viewCount": 3}, "differentElements": ["description"], "edition": 8, "lastseen": "2019-01-16T20:17:46"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "cvelist": ["CVE-2013-7027", "CVE-2013-6383", "CVE-2013-6378", "CVE-2013-4515", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4514", "CVE-2013-6763", "CVE-2013-4470", "CVE-2013-4299"], "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "A flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine (KVM) subsystem was discovered. A local user with the ability to assign a device could exploit this flaw to cause a denial of service (memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's debugfs filesystem. An administrative local user could exploit this flaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 3, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "d4ce6679e1667d2b404c4cba27919ad294d84d0bbd27d7fc4c4ac274e953648d", "hashmap": [{"hash": "e285141e85dd2ef2b67cbd8cea013234", "key": "cvelist"}, {"hash": "7d09d4f5a5bc8ab20cc4e495ef7c8ce7", "key": "pluginID"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "1d731490b777bc15c5d9375993128995", "key": "modified"}, {"hash": "584146a6771679e1f8a19a6e44786f1f", "key": "cpe"}, {"hash": "dd81baa79921f706dc3a62e4e78036e4", "key": "sourceData"}, {"hash": "e8bafdc9ad5c6f47fe1e6e5fd509b7a9", "key": "cvss"}, {"hash": "1f5f3c603b3389b3012aff031335b113", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "745ae31f01be17f43c43efbd2f8ea03a", "key": "description"}, {"hash": "f7e90627a7b878bfb860a2eadcfa74ef", "key": "href"}, {"hash": "97caeba5ad604b4c45004709f41e6cec", "key": "title"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=71793", "id": "UBUNTU_USN-2066-1.NASL", "lastseen": "2017-10-29T13:45:20", "modified": "2016-10-26T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.3", "pluginID": "71793", "published": "2014-01-05T00:00:00", "references": [], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2066-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71793);\n script_version(\"$Revision: 1.9 $\");\n script_cvs_date(\"$Date: 2016/10/26 14:16:25 $\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(63183, 63359, 63509, 63512, 63518, 63707, 63790, 63886, 63888, 64013);\n script_osvdb_id(98634, 98941, 99324, 99326, 99327, 99673, 99674, 99675, 100002, 100292, 100294, 100505);\n script_xref(name:\"USN\", value:\"2066-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to\nassign a device could exploit this flaw to cause a denial of service\n(memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this\nflaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2016 Canonical, Inc. / NASL script (C) 2014-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic-pae\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-highbank\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-virtual\", pkgver:\"3.2.0-58.88\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.2-generic / linux-image-3.2-generic-pae / etc\");\n}\n", "title": "Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)", "type": "nessus", "viewCount": 2}, "differentElements": ["modified", "sourceData"], "edition": 3, "lastseen": "2017-10-29T13:45:20"}, {"bulletin": {"bulletinFamily": "exploit", "cvelist": ["CVE-2013-7027", "CVE-2013-6383", "CVE-2013-6378", "CVE-2013-4515", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4514", "CVE-2013-6763", "CVE-2013-4470", "CVE-2013-4299"], "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "A flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine (KVM) subsystem was discovered. A local user with the ability to assign a device could exploit this flaw to cause a denial of service (memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's debugfs filesystem. An administrative local user could exploit this flaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "hash": "ff8077ffa0ae575a446053de8ab6f3ef1eae0cf9cdff13553c7147f25facd929", "hashmap": [{"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "e285141e85dd2ef2b67cbd8cea013234", "key": "cvelist"}, {"hash": "5ebefc09f1b29d9e0dad2276c1ad05e8", "key": "modified"}, {"hash": "7d09d4f5a5bc8ab20cc4e495ef7c8ce7", "key": "pluginID"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "e7cabb12de5ffa362ad5470536e6b5c7", "key": "cvss"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "1f5f3c603b3389b3012aff031335b113", "key": "published"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "bcc2ff911b2b2bb2865accc9f3a82c33", "key": "sourceData"}, {"hash": "c9b7d00377a789a14c9bb9dab6c7168c", "key": "naslFamily"}, {"hash": "745ae31f01be17f43c43efbd2f8ea03a", "key": "description"}, {"hash": "f7e90627a7b878bfb860a2eadcfa74ef", "key": "href"}, {"hash": "97caeba5ad604b4c45004709f41e6cec", "key": "title"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=71793", "id": "UBUNTU_USN-2066-1.NASL", "lastseen": "2016-09-26T17:26:35", "modified": "2016-05-25T00:00:00", "naslFamily": "Ubuntu Local Security Checks", "objectVersion": "1.2", "pluginID": "71793", "published": "2014-01-05T00:00:00", "references": [], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2066-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71793);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2016/05/25 16:34:54 $\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(63183, 63359, 63509, 63512, 63518, 63707, 63790, 63886, 63888, 64013);\n script_osvdb_id(98634, 98941, 99324, 99326, 99327, 99673, 99674, 99675, 100002, 100292, 100294, 100505);\n script_xref(name:\"USN\", value:\"2066-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to\nassign a device could exploit this flaw to cause a denial of service\n(memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this\nflaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2.0-58-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2.0-58-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2.0-58-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2.0-58-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2016 Canonical, Inc. / NASL script (C) 2014-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic-pae\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-highbank\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-virtual\", pkgver:\"3.2.0-58.88\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.2.0-58-generic / linux-image-3.2.0-58-generic-pae / etc\");\n}\n", "title": "Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2016-09-26T17:26:35"}], "edition": 13, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "584146a6771679e1f8a19a6e44786f1f"}, {"key": "cvelist", "hash": "e285141e85dd2ef2b67cbd8cea013234"}, {"key": "cvss", "hash": "d5f1840e27443eb2d6a17b941080264e"}, {"key": "description", "hash": "d2a6119ef877eb235aefb96a1b53bab3"}, {"key": "href", "hash": "1ea5e89e0e5fc10432f5fd731f40a114"}, {"key": "modified", "hash": "2249940a684898a70237266de5d6dd6c"}, {"key": "naslFamily", "hash": "c9b7d00377a789a14c9bb9dab6c7168c"}, {"key": "pluginID", "hash": "7d09d4f5a5bc8ab20cc4e495ef7c8ce7"}, {"key": "published", "hash": "1f5f3c603b3389b3012aff031335b113"}, {"key": "references", "hash": "10bcaa6967caa679f7eeb2b6f3bdeb4a"}, {"key": "reporter", "hash": "4630e7da2fde8fd05bc0f28b8d0b71e1"}, {"key": "sourceData", "hash": "0db0e6a320a94fe8f83e40cd33751628"}, {"key": "title", "hash": "97caeba5ad604b4c45004709f41e6cec"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "dd324029a89323cd37cb62ff36107d818b150cc5ba097513cd965a557d0edec7", "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:841674", "OPENVAS:841677", "OPENVAS:1361412562310841674", "OPENVAS:1361412562310841677", "OPENVAS:841680", "OPENVAS:1361412562310841680", "OPENVAS:1361412562310841673", "OPENVAS:841673", "OPENVAS:841668", "OPENVAS:841672"]}, {"type": "ubuntu", "idList": ["USN-2066-1", "USN-2067-1", "USN-2073-1", "USN-2072-1", "USN-2071-1", "USN-2074-1", "USN-2076-1", "USN-2069-1", "USN-2068-1", "USN-2042-1"]}, {"type": "nessus", "idList": ["UBUNTU_USN-2069-1.NASL", "UBUNTU_USN-2073-1.NASL", "UBUNTU_USN-2068-1.NASL", "UBUNTU_USN-2071-1.NASL", "MANDRIVA_MDVSA-2013-291.NASL", "UBUNTU_USN-2042-1.NASL", "UBUNTU_USN-2040-1.NASL", "UBUNTU_USN-2043-1.NASL", "SUSE_SU-2014-0189-1.NASL", "SUSE_SU-2014-0140-1.NASL"]}, {"type": "cve", "idList": ["CVE-2013-7027", "CVE-2013-4515", "CVE-2013-6383", "CVE-2013-6763", "CVE-2013-4514", "CVE-2013-6378", "CVE-2013-4511", "CVE-2013-4592", "CVE-2013-4299", "CVE-2013-4470"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:30130", "SECURITYVULNS:VULN:13438", "SECURITYVULNS:DOC:30152"]}], "modified": "2020-01-01T02:11:56"}, "score": {"value": 6.1, "vector": "NONE", "modified": "2020-01-01T02:11:56"}, "vulnersScore": 6.1}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2066-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71793);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(63183, 63359, 63509, 63512, 63518, 63707, 63790, 63886, 63888, 64013);\n script_xref(name:\"USN\", value:\"2066-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux vulnerabilities (USN-2066-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to\nassign a device could exploit this flaw to cause a denial of service\n(memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this\nflaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2066-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/10/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2066-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-generic-pae\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-highbank\", pkgver:\"3.2.0-58.88\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.2.0-58-virtual\", pkgver:\"3.2.0-58.88\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.2-generic / linux-image-3.2-generic-pae / etc\");\n}\n", "naslFamily": "Ubuntu Local Security Checks", "pluginID": "71793", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-virtual", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-generic-pae", "p-cpe:/a:canonical:ubuntu_linux:linux-image-3.2-highbank", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts"], "scheme": null}
{"openvas": [{"lastseen": "2017-12-04T11:16:48", "bulletinFamily": "scanner", "description": "Check for the Version of linux", "modified": "2017-12-01T00:00:00", "published": "2014-01-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841677", "id": "OPENVAS:841677", "title": "Ubuntu Update for linux USN-2066-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2066_1.nasl 7957 2017-12-01 06:40:08Z santu $\n#\n# Ubuntu Update for linux USN-2066-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841677);\n script_version(\"$Revision: 7957 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:40:08 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 16:04:20 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\",\n \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\",\n \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux USN-2066-1\");\n\n tag_insight = \"A flaw was discovered in the Linux kernel's dm snapshot facility. A remote\nauthenticated user could exploit this flaw to obtain sensitive information\nor modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit this\nflaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to assign a\ndevice could exploit this flaw to cause a denial of service (memory\nconsumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this flaw to\ncause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\";\n\n tag_affected = \"linux on Ubuntu 12.04 LTS\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2066-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2066-1/\");\n script_summary(\"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-generic\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-generic-pae\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-highbank\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-omap\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-powerpc-smp\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-powerpc64-smp\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-virtual\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:37:46", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2014-01-06T00:00:00", "id": "OPENVAS:1361412562310841674", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841674", "title": "Ubuntu Update for linux-ti-omap4 USN-2067-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2067_1.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for linux-ti-omap4 USN-2067-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841674\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 16:01:52 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\",\n \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6282\", \"CVE-2013-6378\",\n \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-2067-1\");\n\n script_tag(name:\"affected\", value:\"linux-ti-omap4 on Ubuntu 12.04 LTS\");\n script_tag(name:\"insight\", value:\"A flaw was discovered in the Linux kernel's dm snapshot facility. A remote\nauthenticated user could exploit this flaw to obtain sensitive information\nor modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit this\nflaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative privileges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to assign a\ndevice could exploit this flaw to cause a denial of service (memory\nconsumption). (CVE-2013-4592)\n\nCatalin Marinas reported a flaw in the get_user and put_user API functions\nin the Linux kernel on ARM platforms. An unprivileged local user could\nexploit this flaw to gain administrator privileges. (CVE-2013-6282)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this flaw to\ncause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2067-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2067-1/\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux-ti-omap4'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU12\\.04 LTS\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-1442-omap4\", ver:\"3.2.0-1442.61\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2017-12-04T11:17:16", "bulletinFamily": "scanner", "description": "Check for the Version of linux-ti-omap4", "modified": "2017-12-01T00:00:00", "published": "2014-01-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841674", "id": "OPENVAS:841674", "title": "Ubuntu Update for linux-ti-omap4 USN-2067-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2067_1.nasl 7957 2017-12-01 06:40:08Z santu $\n#\n# Ubuntu Update for linux-ti-omap4 USN-2067-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841674);\n script_version(\"$Revision: 7957 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:40:08 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 16:01:52 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\",\n \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6282\", \"CVE-2013-6378\",\n \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"7.2\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-2067-1\");\n\n tag_insight = \"A flaw was discovered in the Linux kernel's dm snapshot facility. A remote\nauthenticated user could exploit this flaw to obtain sensitive information\nor modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit this\nflaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to assign a\ndevice could exploit this flaw to cause a denial of service (memory\nconsumption). (CVE-2013-4592)\n\nCatalin Marinas reported a flaw in the get_user and put_user API functions\nin the Linux kernel on ARM platforms. An unprivileged local user could\nexploit this flaw to gain administrator privileges. (CVE-2013-6282)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this flaw to\ncause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\";\n\n tag_affected = \"linux-ti-omap4 on Ubuntu 12.04 LTS\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2067-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2067-1/\");\n script_summary(\"Check for the Version of linux-ti-omap4\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-1442-omap4\", ver:\"3.2.0-1442.61\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:37:44", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2014-01-06T00:00:00", "id": "OPENVAS:1361412562310841677", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841677", "title": "Ubuntu Update for linux USN-2066-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2066_1.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for linux USN-2066-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841677\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 16:04:20 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4514\",\n \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6383\",\n \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux USN-2066-1\");\n\n script_tag(name:\"affected\", value:\"linux on Ubuntu 12.04 LTS\");\n script_tag(name:\"insight\", value:\"A flaw was discovered in the Linux kernel's dm snapshot facility. A remote\nauthenticated user could exploit this flaw to obtain sensitive information\nor modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit this\nflaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative privileges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine\n(KVM) subsystem was discovered. A local user with the ability to assign a\ndevice could exploit this flaw to cause a denial of service (memory\nconsumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndebugfs filesystem. An administrative local user could exploit this flaw to\ncause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2066-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2066-1/\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU12\\.04 LTS\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-generic\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-generic-pae\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-highbank\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-omap\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-powerpc-smp\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-powerpc64-smp\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.2.0-58-virtual\", ver:\"3.2.0-58.88\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:37:36", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2014-01-06T00:00:00", "id": "OPENVAS:1361412562310841680", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841680", "title": "Ubuntu Update for linux USN-2073-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2073_1.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for linux USN-2073-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841680\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 16:07:10 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\",\n \"CVE-2013-4515\", \"CVE-2013-4516\", \"CVE-2013-6383\", \"CVE-2013-6763\",\n \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux USN-2073-1\");\n\n script_tag(name:\"affected\", value:\"linux on Ubuntu 13.04\");\n script_tag(name:\"insight\", value:\"Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit this\nflaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative privileges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for the SystemBase Multi-2/PCI serial card. An unprivileged user\ncould obtain sensitive information from kernel memory. (CVE-2013-4516)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2073-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2073-1/\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU13\\.04\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU13.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.8.0-35-generic\", ver:\"3.8.0-35.50\", rls:\"UBUNTU13.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:37:08", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2014-01-06T00:00:00", "id": "OPENVAS:1361412562310841673", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841673", "title": "Ubuntu Update for linux-lts-raring USN-2069-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2069_1.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for linux-lts-raring USN-2069-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841673\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 16:00:47 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\",\n \"CVE-2013-4515\", \"CVE-2013-4516\", \"CVE-2013-6383\", \"CVE-2013-6763\",\n \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-lts-raring USN-2069-1\");\n\n script_tag(name:\"affected\", value:\"linux-lts-raring on Ubuntu 12.04 LTS\");\n script_tag(name:\"insight\", value:\"Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit this\nflaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative privileges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for the SystemBase Multi-2/PCI serial card. An unprivileged user\ncould obtain sensitive information from kernel memory. (CVE-2013-4516)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2069-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2069-1/\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux-lts-raring'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU12\\.04 LTS\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.8.0-35-generic\", ver:\"3.8.0-35.50~precise1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2017-12-04T11:16:57", "bulletinFamily": "scanner", "description": "Check for the Version of linux-lts-raring", "modified": "2017-12-01T00:00:00", "published": "2014-01-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841673", "id": "OPENVAS:841673", "title": "Ubuntu Update for linux-lts-raring USN-2069-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2069_1.nasl 7957 2017-12-01 06:40:08Z santu $\n#\n# Ubuntu Update for linux-lts-raring USN-2069-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841673);\n script_version(\"$Revision: 7957 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:40:08 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 16:00:47 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\",\n \"CVE-2013-4515\", \"CVE-2013-4516\", \"CVE-2013-6383\", \"CVE-2013-6763\",\n \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-lts-raring USN-2069-1\");\n\n tag_insight = \"Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit this\nflaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for the SystemBase Multi-2/PCI serial card. An unprivileged user\ncould obtain sensitive information from kernel memory. (CVE-2013-4516)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\";\n\n tag_affected = \"linux-lts-raring on Ubuntu 12.04 LTS\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2069-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2069-1/\");\n script_summary(\"Check for the Version of linux-lts-raring\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.8.0-35-generic\", ver:\"3.8.0-35.50~precise1\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-12-04T11:16:21", "bulletinFamily": "scanner", "description": "Check for the Version of linux", "modified": "2017-12-01T00:00:00", "published": "2014-01-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841680", "id": "OPENVAS:841680", "title": "Ubuntu Update for linux USN-2073-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2073_1.nasl 7957 2017-12-01 06:40:08Z santu $\n#\n# Ubuntu Update for linux USN-2073-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841680);\n script_version(\"$Revision: 7957 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:40:08 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 16:07:10 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\",\n \"CVE-2013-4515\", \"CVE-2013-4516\", \"CVE-2013-6383\", \"CVE-2013-6763\",\n \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux USN-2073-1\");\n\n tag_insight = \"Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit this\nflaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for the SystemBase Multi-2/PCI serial card. An unprivileged user\ncould obtain sensitive information from kernel memory. (CVE-2013-4516)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\";\n\n tag_affected = \"linux on Ubuntu 13.04\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"2073-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-2073-1/\");\n script_summary(\"Check for the Version of linux\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU13.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.8.0-35-generic\", ver:\"3.8.0-35.50\", rls:\"UBUNTU13.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-05-29T18:37:44", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2014-01-06T00:00:00", "id": "OPENVAS:1361412562310841669", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841669", "title": "Ubuntu Update for linux USN-2071-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2071_1.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for linux USN-2071-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841669\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 15:55:21 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-2930\", \"CVE-2013-4345\", \"CVE-2013-4511\", \"CVE-2013-4513\",\n \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-6383\", \"CVE-2013-6763\",\n \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux USN-2071-1\");\n\n script_tag(name:\"affected\", value:\"linux on Ubuntu 12.10\");\n script_tag(name:\"insight\", value:\"Dave Jones and Vince Weaver reported a flaw in the Linux kernel's per event\nsubsystem that allows normal users to enable function tracing. An\nunprivileged local user could exploit this flaw to obtain potentially\nsensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel's ansi cprng random\nnumber generator. This flaw makes it easier for a local attacker to break\ncryptographic protections. (CVE-2013-4345)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative privileges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2071-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2071-1/\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU12\\.10\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU12.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-45-generic\", ver:\"3.5.0-45.68\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-45-highbank\", ver:\"3.5.0-45.68\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-45-omap\", ver:\"3.5.0-45.68\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-45-powerpc-smp\", ver:\"3.5.0-45.68\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-45-powerpc64-smp\", ver:\"3.5.0-45.68\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:37:33", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2014-01-06T00:00:00", "id": "OPENVAS:1361412562310841668", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310841668", "title": "Ubuntu Update for linux-ti-omap4 USN-2072-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2072_1.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for linux-ti-omap4 USN-2072-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.841668\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-01-06 15:54:41 +0530 (Mon, 06 Jan 2014)\");\n script_cve_id(\"CVE-2013-2930\", \"CVE-2013-4345\", \"CVE-2013-4511\", \"CVE-2013-4513\",\n \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-6383\", \"CVE-2013-6763\",\n \"CVE-2013-7027\");\n script_tag(name:\"cvss_base\", value:\"6.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Ubuntu Update for linux-ti-omap4 USN-2072-1\");\n\n script_tag(name:\"affected\", value:\"linux-ti-omap4 on Ubuntu 12.10\");\n script_tag(name:\"insight\", value:\"Dave Jones and Vince Weaver reported a flaw in the Linux kernel's per event\nsubsystem that allows normal users to enable function tracing. An\nunprivileged local user could exploit this flaw to obtain potentially\nsensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel's ansi cprng random\nnumber generator. This flaw makes it easier for a local attacker to break\ncryptographic protections. (CVE-2013-4345)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\nbuffer drivers in the Linux kernel. An unprivileged local user could\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\nservice or possibly gain administrative privileges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\ncould exploit this flaw to obtain sensitive information from kernel memory.\n(CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the data\nstored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\nA local user could exploit this flaw to cause a denial of service (memory\ncorruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap header\nparsing. A remote attacker could cause a denial of service (buffer over-\nread) via a specially crafted header. (CVE-2013-7027)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2072-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2072-1/\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'linux-ti-omap4'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU12\\.10\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU12.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"linux-image-3.5.0-237-omap4\", ver:\"3.5.0-237.53\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}], "ubuntu": [{"lastseen": "2019-05-29T17:22:40", "bulletinFamily": "unix", "description": "A flaw was discovered in the Linux kernel\u2019s dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel\u2019s UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine (KVM) subsystem was discovered. A local user with the ability to assign a device could exploit this flaw to cause a denial of service (memory consumption). (CVE-2013-4592)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s debugfs filesystem. An administrative local user could exploit this flaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)\n\nAn information leak was discovered in the Linux kernel\u2019s SIOCWANDEV ioctl call. A local user with the CAP_NET_ADMIN capability could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1444)\n\nAn information leak was discovered in the wanxl ioctl function the Linux kernel. A local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1445)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2066-1", "href": "https://usn.ubuntu.com/2066-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T17:23:06", "bulletinFamily": "unix", "description": "A flaw was discovered in the Linux kernel\u2019s dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel\u2019s UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw in the handling of memory regions of the kernel virtual machine (KVM) subsystem was discovered. A local user with the ability to assign a device could exploit this flaw to cause a denial of service (memory consumption). (CVE-2013-4592)\n\nCatalin Marinas reported a flaw in the get_user and put_user API functions in the Linux kernel on ARM platforms. An unprivileged local user could exploit this flaw to gain administrator privileges. (CVE-2013-6282)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s debugfs filesystem. An administrative local user could exploit this flaw to cause a denial of service (OOPS). (CVE-2013-6378)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)\n\nAn information leak was discovered in the Linux kernel\u2019s SIOCWANDEV ioctl call. A local user with the CAP_NET_ADMIN capability could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1444)\n\nAn information leak was discovered in the wanxl ioctl function the Linux kernel. A local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1445)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2067-1", "href": "https://usn.ubuntu.com/2067-1/", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T17:23:21", "bulletinFamily": "unix", "description": "Hannes Frederic Sowa discovered a flaw in the Linux kernel\u2019s UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo Devices USB over WiFi devices. A local user could exploit this flaw to cause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for the SystemBase Multi-2/PCI serial card. An unprivileged user could obtain sensitive information from kernel memory. (CVE-2013-4516)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2073-1", "href": "https://usn.ubuntu.com/2073-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T17:23:39", "bulletinFamily": "unix", "description": "Dave Jones and Vince Weaver reported a flaw in the Linux kernel\u2019s per event subsystem that allows normal users to enable function tracing. An unprivileged local user could exploit this flaw to obtain potentially sensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel\u2019s ansi cprng random number generator. This flaw makes it easier for a local attacker to break cryptographic protections. (CVE-2013-4345)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo Devices USB over WiFi devices. A local user could exploit this flaw to cause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2076-1", "href": "https://usn.ubuntu.com/2076-1/", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T17:21:38", "bulletinFamily": "unix", "description": "Dave Jones and Vince Weaver reported a flaw in the Linux kernel\u2019s per event subsystem that allows normal users to enable function tracing. An unprivileged local user could exploit this flaw to obtain potentially sensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel\u2019s ansi cprng random number generator. This flaw makes it easier for a local attacker to break cryptographic protections. (CVE-2013-4345)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo Devices USB over WiFi devices. A local user could exploit this flaw to cause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2074-1", "href": "https://usn.ubuntu.com/2074-1/", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T19:21:02", "bulletinFamily": "unix", "description": "Dave Jones and Vince Weaver reported a flaw in the Linux kernel\u2019s per event subsystem that allows normal users to enable function tracing. An unprivileged local user could exploit this flaw to obtain potentially sensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel\u2019s ansi cprng random number generator. This flaw makes it easier for a local attacker to break cryptographic protections. (CVE-2013-4345)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo Devices USB over WiFi devices. A local user could exploit this flaw to cause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2072-1", "href": "https://usn.ubuntu.com/2072-1/", "title": "Linux kernel (OMAP4) vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T17:23:03", "bulletinFamily": "unix", "description": "Dave Jones and Vince Weaver reported a flaw in the Linux kernel\u2019s per event subsystem that allows normal users to enable function tracing. An unprivileged local user could exploit this flaw to obtain potentially sensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel\u2019s ansi cprng random number generator. This flaw makes it easier for a local attacker to break cryptographic protections. (CVE-2013-4345)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo Devices USB over WiFi devices. A local user could exploit this flaw to cause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2071-1", "href": "https://usn.ubuntu.com/2071-1/", "title": "Linux kernel vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T17:22:05", "bulletinFamily": "unix", "description": "Hannes Frederic Sowa discovered a flaw in the Linux kernel\u2019s UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo Devices USB over WiFi devices. A local user could exploit this flaw to cause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for the SystemBase Multi-2/PCI serial card. An unprivileged user could obtain sensitive information from kernel memory. (CVE-2013-4516)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)\n\nAn information leak was discovered in the Linux kernel\u2019s SIOCWANDEV ioctl call. A local user with the CAP_NET_ADMIN capability could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1444)\n\nAn information leak was discovered in the wanxl ioctl function the Linux kernel. A local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1445)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2069-1", "href": "https://usn.ubuntu.com/2069-1/", "title": "Linux kernel (Raring HWE) vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T19:20:46", "bulletinFamily": "unix", "description": "Dave Jones and Vince Weaver reported a flaw in the Linux kernel\u2019s per event subsystem that allows normal users to enable function tracing. An unprivileged local user could exploit this flaw to obtain potentially sensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel\u2019s ansi cprng random number generator. This flaw makes it easier for a local attacker to break cryptographic protections. (CVE-2013-4345)\n\nJason Wang discovered a bug in the network flow dissector in the Linux kernel. A remote attacker could exploit this flaw to cause a denial of service (infinite loop). (CVE-2013-4348)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame- buffer drivers in the Linux kernel. An unprivileged local user could exploit this flaw to gain administrative privileges. (CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo Devices USB over WiFi devices. A local user could exploit this flaw to cause a denial of service or possibly unspecified impact. (CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Agere Systems HERMES II Wireless PC Cards. A local user with the CAP_NET_ADMIN capability could exploit this flaw to cause a denial of service or possibly gain adminstrative priviliges. (CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel\u2019s driver for Beceem WIMAX chipset based devices. An unprivileged local user could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel\u2019s compat ioctls for Adaptec AACRAID scsi raid devices. An unprivileged local user could send administrative commands to these devices potentially compromising the data stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel\u2019s userspace IO (uio) driver. A local user could exploit this flaw to cause a denial of service (memory corruption) or possibly gain privileges. (CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)", "modified": "2014-01-03T00:00:00", "published": "2014-01-03T00:00:00", "id": "USN-2068-1", "href": "https://usn.ubuntu.com/2068-1/", "title": "Linux kernel (Quantal HWE) vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.1, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T17:22:55", "bulletinFamily": "unix", "description": "A flaw was discovered in the Linux kernel\u2019s dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel\u2019s UDP Fragmentation Offload (UFO). An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or possibly gain administrative privileges. (CVE-2013-4470)\n\nEvan Huus reported a buffer overflow in the Linux kernel\u2019s radiotap header parsing. A remote attacker could cause a denial of service (buffer over- read) via a specially crafted header. (CVE-2013-7027)\n\nAn information leak was discovered in the Linux kernel\u2019s SIOCWANDEV ioctl call. A local user with the CAP_NET_ADMIN capability could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1444)\n\nAn information leak was discovered in the wanxl ioctl function the Linux kernel. A local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1445)", "modified": "2013-12-03T00:00:00", "published": "2013-12-03T00:00:00", "id": "USN-2042-1", "href": "https://usn.ubuntu.com/2042-1/", "title": "Linux kernel (Saucy HWE) vulnerabilities", "type": "ubuntu", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}], "nessus": [{"lastseen": "2020-01-01T02:11:56", "bulletinFamily": "scanner", "description": "Hannes Frederic Sowa discovered a flaw in the Linux kernel", "modified": "2020-01-02T00:00:00", "id": "UBUNTU_USN-2073-1.NASL", "href": "https://www.tenable.com/plugins/nessus/71798", "published": "2014-01-05T00:00:00", "title": "Ubuntu 13.04 : linux vulnerabilities (USN-2073-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2073-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71798);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4516\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(63359, 63508, 63509, 63512, 63518, 63519, 63707, 63888, 64013);\n script_xref(name:\"USN\", value:\"2073-1\");\n\n script_name(english:\"Ubuntu 13.04 : linux vulnerabilities (USN-2073-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact.\n(CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for the SystemBase Multi-2/PCI serial card. An unprivileged\nuser could obtain sensitive information from kernel memory.\n(CVE-2013-4516)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2073-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-3.8-generic package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.8-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:13.04\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/11/04\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(13\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 13.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4516\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2073-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"13.04\", pkgname:\"linux-image-3.8.0-35-generic\", pkgver:\"3.8.0-35.50\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.8-generic\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T02:11:56", "bulletinFamily": "scanner", "description": "Hannes Frederic Sowa discovered a flaw in the Linux kernel", "modified": "2020-01-02T00:00:00", "id": "UBUNTU_USN-2069-1.NASL", "href": "https://www.tenable.com/plugins/nessus/71795", "published": "2014-01-05T00:00:00", "title": "Ubuntu 12.04 LTS : linux-lts-raring vulnerabilities (USN-2069-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2069-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71795);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4516\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(63359, 64013);\n script_xref(name:\"USN\", value:\"2069-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux-lts-raring vulnerabilities (USN-2069-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmentation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact.\n(CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for the SystemBase Multi-2/PCI serial card. An unprivileged\nuser could obtain sensitive information from kernel memory.\n(CVE-2013-4516)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2069-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-3.8-generic package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.8-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/11/04\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-4470\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4516\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2069-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.8.0-35-generic\", pkgver:\"3.8.0-35.50~precise1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.8-generic\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T02:11:56", "bulletinFamily": "scanner", "description": "Dave Jones and Vince Weaver reported a flaw in the Linux kernel", "modified": "2020-01-02T00:00:00", "id": "UBUNTU_USN-2071-1.NASL", "href": "https://www.tenable.com/plugins/nessus/71797", "published": "2014-01-05T00:00:00", "title": "Ubuntu 12.10 : linux vulnerabilities (USN-2071-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2071-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71797);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-2930\", \"CVE-2013-4345\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(62740, 63508, 63509, 63512, 63518, 63707, 63888, 64013, 64318);\n script_xref(name:\"USN\", value:\"2071-1\");\n\n script_name(english:\"Ubuntu 12.10 : linux vulnerabilities (USN-2071-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dave Jones and Vince Weaver reported a flaw in the Linux kernel's per\nevent subsystem that allows normal users to enable function tracing.\nAn unprivileged local user could exploit this flaw to obtain\npotentially sensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel's ansi cprng\nrandom number generator. This flaw makes it easier for a local\nattacker to break cryptographic protections. (CVE-2013-4345)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact.\n(CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2071-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected linux-image-3.5-generic and / or\nlinux-image-3.5-highbank packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.10\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/10/10\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-2930\", \"CVE-2013-4345\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2071-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.10\", pkgname:\"linux-image-3.5.0-45-generic\", pkgver:\"3.5.0-45.68\")) flag++;\nif (ubuntu_check(osver:\"12.10\", pkgname:\"linux-image-3.5.0-45-highbank\", pkgver:\"3.5.0-45.68\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.5-generic / linux-image-3.5-highbank\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T02:11:56", "bulletinFamily": "scanner", "description": "Dave Jones and Vince Weaver reported a flaw in the Linux kernel", "modified": "2020-01-02T00:00:00", "id": "UBUNTU_USN-2068-1.NASL", "href": "https://www.tenable.com/plugins/nessus/71794", "published": "2014-01-05T00:00:00", "title": "Ubuntu 12.04 LTS : linux-lts-quantal vulnerabilities (USN-2068-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2068-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71794);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-2930\", \"CVE-2013-4345\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n script_bugtraq_id(62740, 63508, 63509, 63512, 63518, 63707, 63888, 64013, 64318);\n script_xref(name:\"USN\", value:\"2068-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux-lts-quantal vulnerabilities (USN-2068-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Dave Jones and Vince Weaver reported a flaw in the Linux kernel's per\nevent subsystem that allows normal users to enable function tracing.\nAn unprivileged local user could exploit this flaw to obtain\npotentially sensitive information from the kernel. (CVE-2013-2930)\n\nStephan Mueller reported an error in the Linux kernel's ansi cprng\nrandom number generator. This flaw makes it easier for a local\nattacker to break cryptographic protections. (CVE-2013-4345)\n\nMultiple integer overflow flaws were discovered in the Alchemy LCD\nframe- buffer drivers in the Linux kernel. An unprivileged local user\ncould exploit this flaw to gain administrative privileges.\n(CVE-2013-4511)\n\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\nDevices USB over WiFi devices. A local user could exploit this flaw to\ncause a denial of service or possibly unspecified impact.\n(CVE-2013-4513)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user\nwith the CAP_NET_ADMIN capability could exploit this flaw to cause a\ndenial of service or possibly gain administrative priviliges.\n(CVE-2013-4514)\n\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\ndriver for Beceem WIMAX chipset based devices. An unprivileged local\nuser could exploit this flaw to obtain sensitive information from\nkernel memory. (CVE-2013-4515)\n\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\nAACRAID scsi raid devices. An unprivileged local user could send\nadministrative commands to these devices potentially compromising the\ndata stored on the device. (CVE-2013-6383)\n\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio)\ndriver. A local user could exploit this flaw to cause a denial of\nservice (memory corruption) or possibly gain privileges.\n(CVE-2013-6763)\n\nEvan Huus reported a buffer overflow in the Linux kernel's radiotap\nheader parsing. A remote attacker could cause a denial of service\n(buffer over- read) via a specially crafted header. (CVE-2013-7027).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2068-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-3.5-generic package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/10/10\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/01/05\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2014-2019 Canonical, Inc. / NASL script (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-2930\", \"CVE-2013-4345\", \"CVE-2013-4511\", \"CVE-2013-4513\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-6383\", \"CVE-2013-6763\", \"CVE-2013-7027\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2068-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.5.0-45-generic\", pkgver:\"3.5.0-45.68~precise1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.5-generic\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T00:18:16", "bulletinFamily": "scanner", "description": "Multiple vulnerabilities has been found and corrected in the Linux\nkernel :\n\nThe Linux kernel before 3.12.2 does not properly use the get_dumpable\nfunction, which allows local users to bypass intended ptrace\nrestrictions or obtain sensitive information from IA64 scratch\nregisters via a crafted application, related to kernel/ptrace.c and\narch/ia64/include/asm/processor.h (CVE-2013-2929).\n\nThe perf_trace_event_perm function in kernel/trace/trace_event_perf.c\nin the Linux kernel before 3.12.2 does not properly restrict access to\nthe perf subsystem, which allows local users to enable function\ntracing via a crafted application (CVE-2013-2930).\n\nMultiple integer overflows in Alchemy LCD frame-buffer drivers in the\nLinux kernel before 3.12 allow local users to create a read-write\nmemory mapping for the entirety of kernel memory, and consequently\ngain privileges, via crafted mmap operations, related to the (1)\nau1100fb_fb_mmap function in drivers/video/au1100fb.c and the (2)\nau1200fb_fb_mmap function in drivers/video/au1200fb.c (CVE-2013-4511).\n\nBuffer overflow in the exitcode_proc_write function in\narch/um/kernel/exitcode.c in the Linux kernel before 3.12 allows local\nusers to cause a denial of service or possibly have unspecified other\nimpact by leveraging root privileges for a write operation\n(CVE-2013-4512).\n\nMultiple buffer overflows in drivers/staging/wlags49_h2/wl_priv.c in\nthe Linux kernel before 3.12 allow local users to cause a denial of\nservice or possibly have unspecified other impact by leveraging the\nCAP_NET_ADMIN capability and providing a long station-name string,\nrelated to the (1) wvlan_uil_put_info and (2)\nwvlan_set_station_nickname functions (CVE-2013-4514).\n\nThe bcm_char_ioctl function in drivers/staging/bcm/Bcmchar.c in the\nLinux kernel before 3.12 does not initialize a certain data structure,\nwhich allows local users to obtain sensitive information from kernel\nmemory via an IOCTL_BCM_GET_DEVICE_DRIVER_INFO ioctl call\n(CVE-2013-4515).\n\nMemory leak in the __kvm_set_memory_region function in\nvirt/kvm/kvm_main.c in the Linux kernel before 3.9 allows local users\nto cause a denial of service (memory consumption) by leveraging\ncertain device access to trigger movement of memory slots\n(CVE-2013-4592).\n\nThe lbs_debugfs_write function in\ndrivers/net/wireless/libertas/debugfs.c in the Linux kernel through\n3.12.1 allows local users to cause a denial of service (OOPS) by\nleveraging root privileges for a zero-length write operation\n(CVE-2013-6378).\n\nThe aac_send_raw_srb function in drivers/scsi/aacraid/commctrl.c in\nthe Linux kernel through 3.12.1 does not properly validate a certain\nsize value, which allows local users to cause a denial of service\n(invalid pointer dereference) or possibly have unspecified other\nimpact via an FSACTL_SEND_RAW_SRB ioctl call that triggers a crafted\nSRB command (CVE-2013-6380).\n\nBuffer overflow in the qeth_snmp_command function in\ndrivers/s390/net/qeth_core_main.c in the Linux kernel through 3.12.1\nallows local users to cause a denial of service or possibly have\nunspecified other impact via an SNMP ioctl call with a length value\nthat is incompatible with the command-buffer size (CVE-2013-6381).\n\nThe aac_compat_ioctl function in drivers/scsi/aacraid/linit.c in the\nLinux kernel before 3.11.8 does not require the CAP_SYS_RAWIO\ncapability, which allows local users to bypass intended access\nrestrictions via a crafted ioctl call (CVE-2013-6383).\n\nThe uio_mmap_physical function in drivers/uio/uio.c in the Linux\nkernel before 3.12 does not validate the size of a memory block, which\nallows local users to cause a denial of service (memory corruption) or\npossibly gain privileges via crafted mmap operations, a different\nvulnerability than CVE-2013-4511 (CVE-2013-6763).\n\nThe updated packages provides a solution for these security issues.", "modified": "2020-01-02T00:00:00", "id": "MANDRIVA_MDVSA-2013-291.NASL", "href": "https://www.tenable.com/plugins/nessus/71511", "published": "2013-12-18T00:00:00", "title": "Mandriva Linux Security Advisory : kernel (MDVSA-2013:291)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2013:291. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71511);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2019/08/02 13:32:55\");\n\n script_cve_id(\"CVE-2013-2929\", \"CVE-2013-2930\", \"CVE-2013-4511\", \"CVE-2013-4512\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4592\", \"CVE-2013-6378\", \"CVE-2013-6380\", \"CVE-2013-6381\", \"CVE-2013-6383\", \"CVE-2013-6763\");\n script_bugtraq_id(63509, 63510, 63512, 63518, 63707, 63790, 63886, 63887, 63888, 63890, 64111, 64318);\n script_xref(name:\"MDVSA\", value:\"2013:291\");\n\n script_name(english:\"Mandriva Linux Security Advisory : kernel (MDVSA-2013:291)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities has been found and corrected in the Linux\nkernel :\n\nThe Linux kernel before 3.12.2 does not properly use the get_dumpable\nfunction, which allows local users to bypass intended ptrace\nrestrictions or obtain sensitive information from IA64 scratch\nregisters via a crafted application, related to kernel/ptrace.c and\narch/ia64/include/asm/processor.h (CVE-2013-2929).\n\nThe perf_trace_event_perm function in kernel/trace/trace_event_perf.c\nin the Linux kernel before 3.12.2 does not properly restrict access to\nthe perf subsystem, which allows local users to enable function\ntracing via a crafted application (CVE-2013-2930).\n\nMultiple integer overflows in Alchemy LCD frame-buffer drivers in the\nLinux kernel before 3.12 allow local users to create a read-write\nmemory mapping for the entirety of kernel memory, and consequently\ngain privileges, via crafted mmap operations, related to the (1)\nau1100fb_fb_mmap function in drivers/video/au1100fb.c and the (2)\nau1200fb_fb_mmap function in drivers/video/au1200fb.c (CVE-2013-4511).\n\nBuffer overflow in the exitcode_proc_write function in\narch/um/kernel/exitcode.c in the Linux kernel before 3.12 allows local\nusers to cause a denial of service or possibly have unspecified other\nimpact by leveraging root privileges for a write operation\n(CVE-2013-4512).\n\nMultiple buffer overflows in drivers/staging/wlags49_h2/wl_priv.c in\nthe Linux kernel before 3.12 allow local users to cause a denial of\nservice or possibly have unspecified other impact by leveraging the\nCAP_NET_ADMIN capability and providing a long station-name string,\nrelated to the (1) wvlan_uil_put_info and (2)\nwvlan_set_station_nickname functions (CVE-2013-4514).\n\nThe bcm_char_ioctl function in drivers/staging/bcm/Bcmchar.c in the\nLinux kernel before 3.12 does not initialize a certain data structure,\nwhich allows local users to obtain sensitive information from kernel\nmemory via an IOCTL_BCM_GET_DEVICE_DRIVER_INFO ioctl call\n(CVE-2013-4515).\n\nMemory leak in the __kvm_set_memory_region function in\nvirt/kvm/kvm_main.c in the Linux kernel before 3.9 allows local users\nto cause a denial of service (memory consumption) by leveraging\ncertain device access to trigger movement of memory slots\n(CVE-2013-4592).\n\nThe lbs_debugfs_write function in\ndrivers/net/wireless/libertas/debugfs.c in the Linux kernel through\n3.12.1 allows local users to cause a denial of service (OOPS) by\nleveraging root privileges for a zero-length write operation\n(CVE-2013-6378).\n\nThe aac_send_raw_srb function in drivers/scsi/aacraid/commctrl.c in\nthe Linux kernel through 3.12.1 does not properly validate a certain\nsize value, which allows local users to cause a denial of service\n(invalid pointer dereference) or possibly have unspecified other\nimpact via an FSACTL_SEND_RAW_SRB ioctl call that triggers a crafted\nSRB command (CVE-2013-6380).\n\nBuffer overflow in the qeth_snmp_command function in\ndrivers/s390/net/qeth_core_main.c in the Linux kernel through 3.12.1\nallows local users to cause a denial of service or possibly have\nunspecified other impact via an SNMP ioctl call with a length value\nthat is incompatible with the command-buffer size (CVE-2013-6381).\n\nThe aac_compat_ioctl function in drivers/scsi/aacraid/linit.c in the\nLinux kernel before 3.11.8 does not require the CAP_SYS_RAWIO\ncapability, which allows local users to bypass intended access\nrestrictions via a crafted ioctl call (CVE-2013-6383).\n\nThe uio_mmap_physical function in drivers/uio/uio.c in the Linux\nkernel before 3.12 does not validate the size of a memory block, which\nallows local users to cause a denial of service (memory corruption) or\npossibly gain privileges via crafted mmap operations, a different\nvulnerability than CVE-2013-4511 (CVE-2013-6763).\n\nThe updated packages provides a solution for these security issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:cpupower\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kernel-firmware\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kernel-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kernel-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kernel-server-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64cpupower-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64cpupower0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:perf\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:business_server:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"cpupower-3.4.71-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", reference:\"kernel-firmware-3.4.71-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"kernel-headers-3.4.71-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"kernel-server-3.4.71-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"kernel-server-devel-3.4.71-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", reference:\"kernel-source-3.4.71-1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"lib64cpupower-devel-3.4.71-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"lib64cpupower0-3.4.71-1.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"perf-3.4.71-1.1.mbs1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T02:11:55", "bulletinFamily": "scanner", "description": "A flaw was discovered in the Linux kernel", "modified": "2020-01-02T00:00:00", "id": "UBUNTU_USN-2040-1.NASL", "href": "https://www.tenable.com/plugins/nessus/71206", "published": "2013-12-04T00:00:00", "title": "Ubuntu 12.04 LTS : linux-lts-quantal vulnerabilities (USN-2040-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2040-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71206);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\");\n script_bugtraq_id(63183, 63359);\n script_xref(name:\"USN\", value:\"2040-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux-lts-quantal vulnerabilities (USN-2040-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmenttation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2040-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected linux-image-3.5-generic package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/10/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/04\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-4299\", \"CVE-2013-4470\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2040-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.5.0-44-generic\", pkgver:\"3.5.0-44.67~precise1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.5-generic\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T02:11:55", "bulletinFamily": "scanner", "description": "A flaw was discovered in the Linux kernel", "modified": "2020-01-02T00:00:00", "id": "UBUNTU_USN-2042-1.NASL", "href": "https://www.tenable.com/plugins/nessus/71208", "published": "2013-12-04T00:00:00", "title": "Ubuntu 12.04 LTS : linux-lts-saucy vulnerabilities (USN-2042-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2042-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71208);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\");\n script_bugtraq_id(63183, 63359);\n script_xref(name:\"USN\", value:\"2042-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS : linux-lts-saucy vulnerabilities (USN-2042-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmenttation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2042-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected linux-image-3.11-generic and / or\nlinux-image-3.11-generic-lpae packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.11-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.11-generic-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/10/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/04\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-4299\", \"CVE-2013-4470\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2042-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.11.0-14-generic\", pkgver:\"3.11.0-14.21~precise1\")) flag++;\nif (ubuntu_check(osver:\"12.04\", pkgname:\"linux-image-3.11.0-14-generic-lpae\", pkgver:\"3.11.0-14.21~precise1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.11-generic / linux-image-3.11-generic-lpae\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T02:11:55", "bulletinFamily": "scanner", "description": "A flaw was discovered in the Linux kernel", "modified": "2020-01-02T00:00:00", "id": "UBUNTU_USN-2043-1.NASL", "href": "https://www.tenable.com/plugins/nessus/71209", "published": "2013-12-04T00:00:00", "title": "Ubuntu 12.10 : linux vulnerabilities (USN-2043-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2043-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71209);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2019/09/19 12:54:29\");\n\n script_cve_id(\"CVE-2013-4299\", \"CVE-2013-4470\");\n script_bugtraq_id(63183, 63359);\n script_xref(name:\"USN\", value:\"2043-1\");\n\n script_name(english:\"Ubuntu 12.10 : linux vulnerabilities (USN-2043-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A flaw was discovered in the Linux kernel's dm snapshot facility. A\nremote authenticated user could exploit this flaw to obtain sensitive\ninformation or modify/corrupt data. (CVE-2013-4299)\n\nHannes Frederic Sowa discovered a flaw in the Linux kernel's UDP\nFragmenttation Offload (UFO). An unprivileged local user could exploit\nthis flaw to cause a denial of service (system crash) or possibly gain\nadministrative privileges. (CVE-2013-4470).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/2043-1/\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected linux-image-3.5-generic and / or\nlinux-image-3.5-highbank packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-generic\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.5-highbank\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.10\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/10/24\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/04\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"linux_alt_patch_detect.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"ksplice.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! preg(pattern:\"^(12\\.10)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.10\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nif (get_one_kb_item(\"Host/ksplice/kernel-cves\"))\n{\n rm_kb_item(name:\"Host/uptrack-uname-r\");\n cve_list = make_list(\"CVE-2013-4299\", \"CVE-2013-4470\");\n if (ksplice_cves_check(cve_list))\n {\n audit(AUDIT_PATCH_INSTALLED, \"KSplice hotfix for USN-2043-1\");\n }\n else\n {\n _ubuntu_report = ksplice_reporting_text();\n }\n}\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.10\", pkgname:\"linux-image-3.5.0-44-generic\", pkgver:\"3.5.0-44.67\")) flag++;\nif (ubuntu_check(osver:\"12.10\", pkgname:\"linux-image-3.5.0-44-highbank\", pkgver:\"3.5.0-44.67\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"linux-image-3.5-generic / linux-image-3.5-highbank\");\n}\n", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T01:45:53", "bulletinFamily": "scanner", "description": "The SUSE Linux Enterprise 11 Service Pack 3 kernel was updated to\n3.0.101 and also includes various other bug and security fixes.\n\nA new feature was added :\n\n - supported.conf: marked net/netfilter/xt_set as supported\n (bnc#851066)(fate#313309)\n\nThe following security bugs have been fixed :\n\nCVE-2013-4587: Array index error in the kvm_vm_ioctl_create_vcpu\nfunction in virt/kvm/kvm_main.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows local users to gain privileges via a\nlarge id value. (bnc#853050)\n\nCVE-2013-4592: Memory leak in the __kvm_set_memory_region\nfunction in virt/kvm/kvm_main.c in the Linux kernel before\n3.9 allows local users to cause a denial of service (memory\nconsumption) by leveraging certain device access to trigger\nmovement of memory slots. (bnc#851101)\n\nCVE-2013-6367: The apic_get_tmcct function in\narch/x86/kvm/lapic.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows guest OS users to cause a\ndenial of service (divide-by-zero error and host OS crash)\nvia crafted modifications of the TMICT value. (bnc#853051)\n\nCVE-2013-6368: The KVM subsystem in the Linux kernel through\n3.12.5 allows local users to gain privileges or cause a\ndenial of service (system crash) via a VAPIC synchronization\noperation involving a page-end address. (bnc#853052)\n\nCVE-2013-6376: The recalculate_apic_map function in\narch/x86/kvm/lapic.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows guest OS users to cause a\ndenial of service (host OS crash) via a crafted ICR write\noperation in x2apic mode. (bnc#853053)\n\nCVE-2013-4483: The ipc_rcu_putref function in ipc/util.c in\nthe Linux kernel before 3.10 does not properly manage a\nreference count, which allows local users to cause a denial\nof service (memory consumption or system crash) via a\ncrafted application. (bnc#848321)\n\nCVE-2013-4511: Multiple integer overflows in Alchemy LCD\nframe-buffer drivers in the Linux kernel before 3.12 allow\nlocal users to create a read-write memory mapping for the\nentirety of kernel memory, and consequently gain privileges,\nvia crafted mmap operations, related to the (1)\nau1100fb_fb_mmap function in drivers/video/au1100fb.c and\nthe (2) au1200fb_fb_mmap function in\ndrivers/video/au1200fb.c. (bnc#849021)\n\nCVE-2013-4514: Multiple buffer overflows in\ndrivers/staging/wlags49_h2/wl_priv.c in the Linux kernel\nbefore 3.12 allow local users to cause a denial of service\nor possibly have unspecified other impact by leveraging the\nCAP_NET_ADMIN capability and providing a long station-name\nstring, related to the (1) wvlan_uil_put_info and (2)\nwvlan_set_station_nickname functions. (bnc#849029)\n\nCVE-2013-4515: The bcm_char_ioctl function in\ndrivers/staging/bcm/Bcmchar.c in the Linux kernel before\n3.12 does not initialize a certain data structure, which\nallows local users to obtain sensitive information from\nkernel memory via an IOCTL_BCM_GET_DEVICE_DRIVER_INFO ioctl\ncall. (bnc#849034)\n\nCVE-2013-6378: The lbs_debugfs_write function in\ndrivers/net/wireless/libertas/debugfs.c in the Linux kernel\nthrough 3.12.1 allows local users to cause a denial of\nservice (OOPS) by leveraging root privileges for a\nzero-length write operation. (bnc#852559)\n\nCVE-2013-6380: The aac_send_raw_srb function in\ndrivers/scsi/aacraid/commctrl.c in the Linux kernel through\n3.12.1 does not properly validate a certain size value,\nwhich allows local users to cause a denial of service\n(invalid pointer dereference) or possibly have unspecified\nother impact via an FSACTL_SEND_RAW_SRB ioctl call that\ntriggers a crafted SRB command. (bnc#852373)\n\nCVE-2013-7027: The ieee80211_radiotap_iterator_init function\nin net/wireless/radiotap.c in the Linux kernel before 3.11.7\ndoes not check whether a frame contains any data outside of\nthe header, which might allow attackers to cause a denial of\nservice (buffer over-read) via a crafted header.\n(bnc#854634)\n\nCVE-2013-6463: Linux kernel built with the networking\nsupport(CONFIG_NET) is vulnerable to an information leakage\nflaw in the socket layer. It could occur while doing\nrecvmsg(2), recvfrom(2) socket calls. It occurs due to\nimproperly initialised msg_name & msg_namelen message header\nparameters. (bnc#854722)\n\nCVE-2013-6383: The aac_compat_ioctl function in\ndrivers/scsi/aacraid/linit.c in the Linux kernel before\n3.11.8 does not require the CAP_SYS_RAWIO capability, which\nallows local users to bypass intended access restrictions\nvia a crafted ioctl call. (bnc#852558)\n\nCVE-2013-4345: Off-by-one error in the get_prng_bytes\nfunction in crypto/ansi_cprng.c in the Linux kernel through\n3.11.4 makes it easier for context-dependent attackers to\ndefeat cryptographic protection mechanisms via multiple\nrequests for small amounts of data, leading to improper\nmanagement of the state of the consumed data. (bnc#840226)\n\nCVE-2013-2146: arch/x86/kernel/cpu/perf_event_intel.c in the\nLinux kernel before 3.8.9, when the Performance Events\nSubsystem is enabled, specifies an incorrect bitmask, which\nallows local users to cause a denial of service (general\nprotection fault and system crash) by attempting to set a\nreserved bit. (bnc#825006)\n\nCVE-2013-2930: The perf_trace_event_perm function in\nkernel/trace/trace_event_perf.c in the Linux kernel before\n3.12.2 does not properly restrict access to the perf\nsubsystem, which allows local users to enable function\ntracing via a crafted application. (bnc#849362)\n\nAlso the following non-security bugs have been fixed :\n\n - kernel: correct tlb flush on page table upgrade\n (bnc#847660, LTC#99268).\n\n - kernel: fix floating-point-control register save and\n restore (bnc#847660, LTC#99000). kernel: correct\n handling of asce-type exceptions (bnc#851879,\n LTC#100293).\n\n watchdog: Get rid of MODULE_ALIAS_MISCDEV statements\n (bnc#827767).\n\n - random: fix accounting race condition with lockless irq\n entropy_count update (bnc#789359).\n\n - blktrace: Send BLK_TN_PROCESS events to all running\n traces (bnc#838623).\n\n - printk: forcibly flush nmi ringbuffer if oops is in\n progress (bnc#849675).\n\n - Introduce KABI exception for cpuidle_state->disable via\n #ifndef __GENKSYMS__\n\n - Honor state disabling in the cpuidle ladder governor\n (bnc#845378).\n\n - cpuidle: add a sysfs entry to disable specific C state\n for debug purpose (bnc#845378).\n\n - net: Do not enable tx-nocache-copy by default\n (bnc#845378).\n\n - mm: reschedule to avoid RCU stall triggering during boot\n of large machines (bnc#820434,bnc#852153). rtc-cmos: Add\n an alarm disable quirk (bnc#805740).\n\n tty/hvc_iucv: Disconnect IUCV connection when lowering\n DTR (bnc#839973, LTC#97595).\n\n tty/hvc_console: Add DTR/RTS callback to handle HUPCL\n control (bnc#839973, LTC#97595).\n\n sched: Avoid throttle_cfs_rq() racing with period_timer\n stopping (bnc#848336).\n\n - sched/balancing: Periodically decay max cost of idle\n balance (bnc#849256).\n\n - sched: Consider max cost of idle balance per sched\n domain (bnc#849256).\n\n - sched: Reduce overestimating rq->avg_idle (bnc#849256).\n\n - sched: Fix cfs_bandwidth misuse of\n hrtimer_expires_remaining (bnc#848336).\n\n - sched: Fix hrtimer_cancel()/rq->lock deadlock\n (bnc#848336).\n\n - sched: Fix race on toggling cfs_bandwidth_used\n (bnc#848336).\n\n - sched: Guarantee new group-entities always have weight\n (bnc#848336).\n\n - sched: Use jump labels to reduce overhead when bandwidth\n control is inactive (bnc#848336). sched: Fix several\n races in CFS_BANDWIDTH (bnc#848336).\n\n futex: fix handling of read-only-mapped hugepages (VM\n Functionality).\n\n - futex: move user address verification up to common code\n (bnc#851603).\n\n - futexes: Clean up various details (bnc#851603).\n\n - futexes: Increase hash table size for better performance\n (bnc#851603).\n\n - futexes: Document multiprocessor ordering guarantees\n (bnc#851603).\n\n - futexes: Avoid taking the hb->lock if there is nothing\n to wake up (bnc#851603).\n\n - futexes: Fix futex_hashsize initialization (bnc#851603).\n mutex: Make more scalable by doing fewer atomic\n operations (bnc#849256).\n\n powerpc: Fix memory hotplug with sparse vmemmap\n (bnc#827527).\n\n - powerpc: Add System RAM to /proc/iomem (bnc#827527).\n\n - powerpc/mm: Mark Memory Resources as busy (bnc#827527).\n\n - powerpc: Fix fatal SLB miss when restoring PPR\n (bnc#853465).\n\n - powerpc: Make function that parses RTAS error logs\n global (bnc#852761).\n\n - powerpc/pseries: Parse and handle EPOW interrupts\n (bnc#852761).\n\n - powerpc/rtas_flash: Fix validate_flash buffer overflow\n issue (bnc#847842). powerpc/rtas_flash: Fix bad memory\n access (bnc#847842).\n\n x86: Update UV3 hub revision ID (bnc#846298\n fate#314987).\n\n - x86: Remove some noise from boot log when starting cpus\n (bnc#770541).\n\n - x86/microcode/amd: Tone down printk(), do not treat a\n missing firmware file as an error (bnc#843654).\n\n - x86/dumpstack: Fix printk_address for direct addresses\n (bnc#845621). x86/PCI: reduce severity of host bridge\n window conflict warnings (bnc#858534).\n\n ipv6: fix race condition regarding dst->expires and\n dst->from (bnc#843185).\n\n - netback: bump tx queue length (bnc#849404).\n\n - xfrm: invalidate dst on policy insertion/deletion\n (bnc#842239). xfrm: prevent ipcomp scratch buffer race\n condition (bnc#842239).\n\n tcp: bind() fix autoselection to share ports\n (bnc#823618).\n\n - tcp: bind() use stronger condition for bind_conflict\n (bnc#823618).\n\n - tcp: ipv6: bind() use stronger condition for\n bind_conflict (bnc#823618). kabi: protect bind_conflict\n callback in struct inet_connection_sock_af_ops\n (bnc#823618).\n\n macvlan: introduce IFF_MACVLAN flag and helper function\n (bnc#846984).\n\n - macvlan: introduce macvlan_dev_real_dev() helper\n function (bnc#846984). macvlan: disable LRO on lower\n device instead of macvlan (bnc#846984).\n\n fs: Avoid softlockup in shrink_dcache_for_umount_subtree\n (bnc#834473).\n\n - blkdev_max_block: make private to fs/buffer.c\n (bnc#820338). storage: SMI Corporation usb key added to\n READ_CAPACITY_10 quirk (bnc#850324).\n\n autofs4: autofs4_wait() vs. autofs4_catatonic_mode()\n race (bnc#851314).\n\n - autofs4: catatonic_mode vs. notify_daemon race\n (bnc#851314).\n\n - autofs4: close the races around autofs4_notify_daemon()\n (bnc#851314).\n\n - autofs4: deal with autofs4_write/autofs4_write races\n (bnc#851314).\n\n - autofs4: dont clear DCACHE_NEED_AUTOMOUNT on rootless\n mount (bnc#851314).\n\n - autofs4: fix deal with autofs4_write races (bnc#851314).\n autofs4: use simple_empty() for empty directory check\n (bnc#851314).\n\n dlm: set zero linger time on sctp socket (bnc#787843).\n\n - SUNRPC: Fix a data corruption issue when retransmitting\n RPC calls (no bugzilla yet - netapp confirms problem and\n fix).\n\n - nfs: Change NFSv4 to not recover locks after they are\n lost (bnc#828236). nfs: Adapt readdirplus to application\n usage patterns (bnc#834708).\n\n xfs: Account log unmount transaction correctly\n (bnc#849950).\n\n - xfs: improve ioend error handling (bnc#846036).\n\n - xfs: reduce ioend latency (bnc#846036).\n\n - xfs: use per-filesystem I/O completion workqueues\n (bnc#846036). xfs: Hide additional entries in struct\n xfs_mount (bnc#846036 bnc#848544).\n\n Btrfs: do not BUG_ON() if we get an error walking\n backrefs (FATE#312888).\n\n vfs: avoid ", "modified": "2020-01-02T00:00:00", "id": "SUSE_SU-2014-0189-1.NASL", "href": "https://www.tenable.com/plugins/nessus/83609", "published": "2015-05-20T00:00:00", "title": "SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2014:0189-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2014:0189-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83609);\n script_version(\"2.2\");\n script_cvs_date(\"Date: 2018/07/31 17:27:54\");\n\n script_cve_id(\"CVE-2013-2146\", \"CVE-2013-2930\", \"CVE-2013-4345\", \"CVE-2013-4483\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4587\", \"CVE-2013-4592\", \"CVE-2013-6367\", \"CVE-2013-6368\", \"CVE-2013-6376\", \"CVE-2013-6378\", \"CVE-2013-6380\", \"CVE-2013-6383\", \"CVE-2013-6463\", \"CVE-2013-7027\");\n script_bugtraq_id(60324, 62740, 63445, 63509, 63512, 63518, 63790, 63886, 63887, 63888, 64013, 64270, 64291, 64318, 64319, 64328, 64669, 64739, 64741, 64742, 64743, 64744, 64746);\n\n script_name(english:\"SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2014:0189-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The SUSE Linux Enterprise 11 Service Pack 3 kernel was updated to\n3.0.101 and also includes various other bug and security fixes.\n\nA new feature was added :\n\n - supported.conf: marked net/netfilter/xt_set as supported\n (bnc#851066)(fate#313309)\n\nThe following security bugs have been fixed :\n\nCVE-2013-4587: Array index error in the kvm_vm_ioctl_create_vcpu\nfunction in virt/kvm/kvm_main.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows local users to gain privileges via a\nlarge id value. (bnc#853050)\n\nCVE-2013-4592: Memory leak in the __kvm_set_memory_region\nfunction in virt/kvm/kvm_main.c in the Linux kernel before\n3.9 allows local users to cause a denial of service (memory\nconsumption) by leveraging certain device access to trigger\nmovement of memory slots. (bnc#851101)\n\nCVE-2013-6367: The apic_get_tmcct function in\narch/x86/kvm/lapic.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows guest OS users to cause a\ndenial of service (divide-by-zero error and host OS crash)\nvia crafted modifications of the TMICT value. (bnc#853051)\n\nCVE-2013-6368: The KVM subsystem in the Linux kernel through\n3.12.5 allows local users to gain privileges or cause a\ndenial of service (system crash) via a VAPIC synchronization\noperation involving a page-end address. (bnc#853052)\n\nCVE-2013-6376: The recalculate_apic_map function in\narch/x86/kvm/lapic.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows guest OS users to cause a\ndenial of service (host OS crash) via a crafted ICR write\noperation in x2apic mode. (bnc#853053)\n\nCVE-2013-4483: The ipc_rcu_putref function in ipc/util.c in\nthe Linux kernel before 3.10 does not properly manage a\nreference count, which allows local users to cause a denial\nof service (memory consumption or system crash) via a\ncrafted application. (bnc#848321)\n\nCVE-2013-4511: Multiple integer overflows in Alchemy LCD\nframe-buffer drivers in the Linux kernel before 3.12 allow\nlocal users to create a read-write memory mapping for the\nentirety of kernel memory, and consequently gain privileges,\nvia crafted mmap operations, related to the (1)\nau1100fb_fb_mmap function in drivers/video/au1100fb.c and\nthe (2) au1200fb_fb_mmap function in\ndrivers/video/au1200fb.c. (bnc#849021)\n\nCVE-2013-4514: Multiple buffer overflows in\ndrivers/staging/wlags49_h2/wl_priv.c in the Linux kernel\nbefore 3.12 allow local users to cause a denial of service\nor possibly have unspecified other impact by leveraging the\nCAP_NET_ADMIN capability and providing a long station-name\nstring, related to the (1) wvlan_uil_put_info and (2)\nwvlan_set_station_nickname functions. (bnc#849029)\n\nCVE-2013-4515: The bcm_char_ioctl function in\ndrivers/staging/bcm/Bcmchar.c in the Linux kernel before\n3.12 does not initialize a certain data structure, which\nallows local users to obtain sensitive information from\nkernel memory via an IOCTL_BCM_GET_DEVICE_DRIVER_INFO ioctl\ncall. (bnc#849034)\n\nCVE-2013-6378: The lbs_debugfs_write function in\ndrivers/net/wireless/libertas/debugfs.c in the Linux kernel\nthrough 3.12.1 allows local users to cause a denial of\nservice (OOPS) by leveraging root privileges for a\nzero-length write operation. (bnc#852559)\n\nCVE-2013-6380: The aac_send_raw_srb function in\ndrivers/scsi/aacraid/commctrl.c in the Linux kernel through\n3.12.1 does not properly validate a certain size value,\nwhich allows local users to cause a denial of service\n(invalid pointer dereference) or possibly have unspecified\nother impact via an FSACTL_SEND_RAW_SRB ioctl call that\ntriggers a crafted SRB command. (bnc#852373)\n\nCVE-2013-7027: The ieee80211_radiotap_iterator_init function\nin net/wireless/radiotap.c in the Linux kernel before 3.11.7\ndoes not check whether a frame contains any data outside of\nthe header, which might allow attackers to cause a denial of\nservice (buffer over-read) via a crafted header.\n(bnc#854634)\n\nCVE-2013-6463: Linux kernel built with the networking\nsupport(CONFIG_NET) is vulnerable to an information leakage\nflaw in the socket layer. It could occur while doing\nrecvmsg(2), recvfrom(2) socket calls. It occurs due to\nimproperly initialised msg_name & msg_namelen message header\nparameters. (bnc#854722)\n\nCVE-2013-6383: The aac_compat_ioctl function in\ndrivers/scsi/aacraid/linit.c in the Linux kernel before\n3.11.8 does not require the CAP_SYS_RAWIO capability, which\nallows local users to bypass intended access restrictions\nvia a crafted ioctl call. (bnc#852558)\n\nCVE-2013-4345: Off-by-one error in the get_prng_bytes\nfunction in crypto/ansi_cprng.c in the Linux kernel through\n3.11.4 makes it easier for context-dependent attackers to\ndefeat cryptographic protection mechanisms via multiple\nrequests for small amounts of data, leading to improper\nmanagement of the state of the consumed data. (bnc#840226)\n\nCVE-2013-2146: arch/x86/kernel/cpu/perf_event_intel.c in the\nLinux kernel before 3.8.9, when the Performance Events\nSubsystem is enabled, specifies an incorrect bitmask, which\nallows local users to cause a denial of service (general\nprotection fault and system crash) by attempting to set a\nreserved bit. (bnc#825006)\n\nCVE-2013-2930: The perf_trace_event_perm function in\nkernel/trace/trace_event_perf.c in the Linux kernel before\n3.12.2 does not properly restrict access to the perf\nsubsystem, which allows local users to enable function\ntracing via a crafted application. (bnc#849362)\n\nAlso the following non-security bugs have been fixed :\n\n - kernel: correct tlb flush on page table upgrade\n (bnc#847660, LTC#99268).\n\n - kernel: fix floating-point-control register save and\n restore (bnc#847660, LTC#99000). kernel: correct\n handling of asce-type exceptions (bnc#851879,\n LTC#100293).\n\n watchdog: Get rid of MODULE_ALIAS_MISCDEV statements\n (bnc#827767).\n\n - random: fix accounting race condition with lockless irq\n entropy_count update (bnc#789359).\n\n - blktrace: Send BLK_TN_PROCESS events to all running\n traces (bnc#838623).\n\n - printk: forcibly flush nmi ringbuffer if oops is in\n progress (bnc#849675).\n\n - Introduce KABI exception for cpuidle_state->disable via\n #ifndef __GENKSYMS__\n\n - Honor state disabling in the cpuidle ladder governor\n (bnc#845378).\n\n - cpuidle: add a sysfs entry to disable specific C state\n for debug purpose (bnc#845378).\n\n - net: Do not enable tx-nocache-copy by default\n (bnc#845378).\n\n - mm: reschedule to avoid RCU stall triggering during boot\n of large machines (bnc#820434,bnc#852153). rtc-cmos: Add\n an alarm disable quirk (bnc#805740).\n\n tty/hvc_iucv: Disconnect IUCV connection when lowering\n DTR (bnc#839973, LTC#97595).\n\n tty/hvc_console: Add DTR/RTS callback to handle HUPCL\n control (bnc#839973, LTC#97595).\n\n sched: Avoid throttle_cfs_rq() racing with period_timer\n stopping (bnc#848336).\n\n - sched/balancing: Periodically decay max cost of idle\n balance (bnc#849256).\n\n - sched: Consider max cost of idle balance per sched\n domain (bnc#849256).\n\n - sched: Reduce overestimating rq->avg_idle (bnc#849256).\n\n - sched: Fix cfs_bandwidth misuse of\n hrtimer_expires_remaining (bnc#848336).\n\n - sched: Fix hrtimer_cancel()/rq->lock deadlock\n (bnc#848336).\n\n - sched: Fix race on toggling cfs_bandwidth_used\n (bnc#848336).\n\n - sched: Guarantee new group-entities always have weight\n (bnc#848336).\n\n - sched: Use jump labels to reduce overhead when bandwidth\n control is inactive (bnc#848336). sched: Fix several\n races in CFS_BANDWIDTH (bnc#848336).\n\n futex: fix handling of read-only-mapped hugepages (VM\n Functionality).\n\n - futex: move user address verification up to common code\n (bnc#851603).\n\n - futexes: Clean up various details (bnc#851603).\n\n - futexes: Increase hash table size for better performance\n (bnc#851603).\n\n - futexes: Document multiprocessor ordering guarantees\n (bnc#851603).\n\n - futexes: Avoid taking the hb->lock if there is nothing\n to wake up (bnc#851603).\n\n - futexes: Fix futex_hashsize initialization (bnc#851603).\n mutex: Make more scalable by doing fewer atomic\n operations (bnc#849256).\n\n powerpc: Fix memory hotplug with sparse vmemmap\n (bnc#827527).\n\n - powerpc: Add System RAM to /proc/iomem (bnc#827527).\n\n - powerpc/mm: Mark Memory Resources as busy (bnc#827527).\n\n - powerpc: Fix fatal SLB miss when restoring PPR\n (bnc#853465).\n\n - powerpc: Make function that parses RTAS error logs\n global (bnc#852761).\n\n - powerpc/pseries: Parse and handle EPOW interrupts\n (bnc#852761).\n\n - powerpc/rtas_flash: Fix validate_flash buffer overflow\n issue (bnc#847842). powerpc/rtas_flash: Fix bad memory\n access (bnc#847842).\n\n x86: Update UV3 hub revision ID (bnc#846298\n fate#314987).\n\n - x86: Remove some noise from boot log when starting cpus\n (bnc#770541).\n\n - x86/microcode/amd: Tone down printk(), do not treat a\n missing firmware file as an error (bnc#843654).\n\n - x86/dumpstack: Fix printk_address for direct addresses\n (bnc#845621). x86/PCI: reduce severity of host bridge\n window conflict warnings (bnc#858534).\n\n ipv6: fix race condition regarding dst->expires and\n dst->from (bnc#843185).\n\n - netback: bump tx queue length (bnc#849404).\n\n - xfrm: invalidate dst on policy insertion/deletion\n (bnc#842239). xfrm: prevent ipcomp scratch buffer race\n condition (bnc#842239).\n\n tcp: bind() fix autoselection to share ports\n (bnc#823618).\n\n - tcp: bind() use stronger condition for bind_conflict\n (bnc#823618).\n\n - tcp: ipv6: bind() use stronger condition for\n bind_conflict (bnc#823618). kabi: protect bind_conflict\n callback in struct inet_connection_sock_af_ops\n (bnc#823618).\n\n macvlan: introduce IFF_MACVLAN flag and helper function\n (bnc#846984).\n\n - macvlan: introduce macvlan_dev_real_dev() helper\n function (bnc#846984). macvlan: disable LRO on lower\n device instead of macvlan (bnc#846984).\n\n fs: Avoid softlockup in shrink_dcache_for_umount_subtree\n (bnc#834473).\n\n - blkdev_max_block: make private to fs/buffer.c\n (bnc#820338). storage: SMI Corporation usb key added to\n READ_CAPACITY_10 quirk (bnc#850324).\n\n autofs4: autofs4_wait() vs. autofs4_catatonic_mode()\n race (bnc#851314).\n\n - autofs4: catatonic_mode vs. notify_daemon race\n (bnc#851314).\n\n - autofs4: close the races around autofs4_notify_daemon()\n (bnc#851314).\n\n - autofs4: deal with autofs4_write/autofs4_write races\n (bnc#851314).\n\n - autofs4: dont clear DCACHE_NEED_AUTOMOUNT on rootless\n mount (bnc#851314).\n\n - autofs4: fix deal with autofs4_write races (bnc#851314).\n autofs4: use simple_empty() for empty directory check\n (bnc#851314).\n\n dlm: set zero linger time on sctp socket (bnc#787843).\n\n - SUNRPC: Fix a data corruption issue when retransmitting\n RPC calls (no bugzilla yet - netapp confirms problem and\n fix).\n\n - nfs: Change NFSv4 to not recover locks after they are\n lost (bnc#828236). nfs: Adapt readdirplus to application\n usage patterns (bnc#834708).\n\n xfs: Account log unmount transaction correctly\n (bnc#849950).\n\n - xfs: improve ioend error handling (bnc#846036).\n\n - xfs: reduce ioend latency (bnc#846036).\n\n - xfs: use per-filesystem I/O completion workqueues\n (bnc#846036). xfs: Hide additional entries in struct\n xfs_mount (bnc#846036 bnc#848544).\n\n Btrfs: do not BUG_ON() if we get an error walking\n backrefs (FATE#312888).\n\n vfs: avoid 'attempt to access beyond end of device'\n warnings (bnc#820338).\n\n - vfs: fix O_DIRECT read past end of block device\n (bnc#820338).\n\n - cifs: Improve performance of browsing directories with\n several files (bnc#810323). cifs: Ensure cifs\n directories do not show up as files (bnc#826602).\n\n dm-multipath: abort all requests when failing a path\n (bnc#798050).\n\n - scsi: Add 'eh_deadline' to limit SCSI EH runtime\n (bnc#798050).\n\n - scsi: Allow error handling timeout to be specified\n (bnc#798050).\n\n - scsi: Fixup compilation warning (bnc#798050).\n\n - scsi: Retry failfast commands after EH (bnc#798050).\n\n - scsi: Warn on invalid command completion (bnc#798050).\n\n - advansys: Remove 'last_reset' references (bnc#798050).\n\n - cleanup setting task state in scsi_error_handler()\n (bnc#798050).\n\n - dc395: Move 'last_reset' into internal host structure\n (bnc#798050).\n\n - dpt_i2o: Remove DPTI_STATE_IOCTL (bnc#798050).\n\n - dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset\n (bnc#798050).\n\n - scsi: kABI fixes (bnc#798050).\n\n - scsi: remove check for 'resetting' (bnc#798050).\n tmscsim: Move 'last_reset' into host structure\n (bnc#798050).\n\n SCSI & usb-storage: add try_rc_10_first flag\n (bnc#853428).\n\n - iscsi_target: race condition on shutdown (bnc#850072).\n\n - libfcoe: Make fcoe_sysfs optional / fix fnic NULL\n exception (bnc#837206).\n\n - lpfc 8.3.42: Fixed issue of task management commands\n having a fixed timeout (bnc#856481).\n\n - advansys: Remove 'last_reset' references (bnc#856481).\n\n - dc395: Move 'last_reset' into internal host structure\n (bnc#856481).\n\n - Add 'eh_deadline' to limit SCSI EH runtime (bnc#856481).\n\n - remove check for 'resetting' (bnc#856481). tmscsim: Move\n 'last_reset' into host structure (bnc#856481).\n\n scsi_dh_rdac: Add new IBM 1813 product id to rdac\n devlist (bnc#846654).\n\n md: Change handling of save_raid_disk and metadata\n update during recovery (bnc#849364).\n\n dpt_i2o: Remove DPTI_STATE_IOCTL (bnc#856481).\n\n dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset\n (bnc#856481).\n\n crypto: unload of aes_s390 module causes kernel panic\n (bnc#847660, LTC#98706).\n\n - crypto: Fix aes-xts parameter corruption (bnc#854546,\n LTC#100718). crypto: gf128mul - fix call to memset()\n (obvious fix).\n\n X.509: Fix certificate gathering (bnc#805114).\n\n pcifront: Deal with toolstack missing\n 'XenbusStateClosing' state.\n\n - xencons: generalize use of add_preferred_console()\n (bnc#733022, bnc#852652).\n\n - netxen: fix off by one bug in netxen_release_tx_buffer()\n (bnc#845729).\n\n - xen: xen_spin_kick fixed crash/lock release\n (bnc#807434)(bnc#848652). xen: fixed USB passthrough\n issue (bnc#852624).\n\n igb: Fix get_fw_version function for all parts\n (bnc#848317).\n\n - igb: Refactor of init_nvm_params (bnc#848317).\n\n - r8169: check ALDPS bit and disable it if enabled for the\n 8168g (bnc#845352).\n\n - qeth: request length checking in snmp ioctl (bnc#847660,\n LTC#99511). bnx2x: remove false warning regarding\n interrupt number (bnc#769035).\n\n usb: Fix xHCI host issues on remote wakeup (bnc#846989).\n\n - xhci: Limit the spurious wakeup fix only to HP machines\n (bnc#833097).\n\n - Intel xhci: refactor EHCI/xHCI port switching\n (bnc#840116).\n\n - xhci-hub.c: preserved kABI (bnc#840116). xhci: Refactor\n port status into a new function (bnc#840116).\n\n HID: multitouch: Add support for NextWindow 0340\n touchscreen (bnc#849855).\n\n - HID: multitouch: Add support for Qaunta 3027 touchscreen\n (bnc#854516).\n\n - HID: multitouch: add support for Atmel 212c touchscreen\n (bnc#793727).\n\n - HID: multitouch: partial support of win8 devices\n (bnc#854516,bnc#793727,bnc#849855). HID: hid-multitouch:\n add support for the IDEACOM 6650 chip\n (bnc#854516,bnc#793727,bnc#849855).\n\n ALSA: hda - Fix inconsistent mic-mute LED (bnc#848864).\n\n ALSA: hda - load EQ params into IDT codec on HP bNB13\n systems (bnc#850493).\n\n lpfc: correct some issues with txcomplq processing\n (bnc#818064).\n\n lpfc: correct an issue with rrq processing (bnc#818064).\n\n block: factor out vector mergeable decision to a helper\n function (bnc#769644).\n\n block: modify __bio_add_page check to accept pages that\n do not start a new segment (bnc#769644).\n\n sd: avoid deadlocks when running under multipath\n (bnc#818545).\n\n - sd: fix crash when UA received on DIF enabled device\n (bnc#841445). sg: fix blk_get_queue usage (bnc#834808).\n\n lpfc: Do not free original IOCB whenever ABTS fails\n (bnc#806988).\n\n - lpfc: Fix kernel warning on spinlock usage (bnc#806988).\n lpfc: Fixed system panic due to midlayer abort\n (bnc#806988).\n\n qla2xxx: Add module parameter to override the default\n request queue size (bnc#826756).\n\n qla2xxx: Module parameter 'ql2xasynclogin' (bnc#825896).\n\n Pragmatic workaround for realtime class abuse induced\n latency issues.\n\n Provide realtime priority kthread and workqueue boot\n options (bnc#836718).\n\n mlx4: allocate just enough pages instead of always 4\n pages (bnc#835186 bnc#835074).\n\n - mlx4: allow order-0 memory allocations in RX path\n (bnc#835186 bnc#835074).\n\n - net/mlx4: use one page fragment per incoming frame\n (bnc#835186 bnc#835074). bna: do not register\n ndo_set_rx_mode callback (bnc#847261).\n\n PCI: pciehp: Retrieve link speed after link is trained\n (bnc#820102).\n\n - PCI: Separate pci_bus_read_dev_vendor_id from\n pci_scan_device (bnc#820102).\n\n - PCI: pciehp: replace unconditional sleep with config\n space access check (bnc#820102).\n\n - PCI: pciehp: make check_link_active more helpful\n (bnc#820102).\n\n - PCI: pciehp: Add pcie_wait_link_not_active()\n (bnc#820102).\n\n - PCI: pciehp: Add Disable/enable link functions\n (bnc#820102).\n\n - PCI: pciehp: Disable/enable link during slot power\n off/on (bnc#820102). PCI: fix truncation of resource\n size to 32 bits (bnc#843419).\n\n hv: handle more than just WS2008 in KVP negotiation\n (bnc#850640).\n\n mei: ME hardware reset needs to be synchronized\n (bnc#821619).\n\n kabi: Restore struct irq_desc::timer_rand_state.\n\n fs3270: unloading module does not remove device\n (bnc#851879, LTC#100284).\n\n cio: add message for timeouts on internal I/O\n (bnc#837739,LTC#97047).\n\n isci: Fix a race condition in the SSP task management\n path (bnc#826978).\n\n ptp: dynamic allocation of PHC char devices\n (bnc#851290).\n\n efifb: prevent null-deref when iterating dmi_list\n (bnc#848055).\n\n dm-mpath: Fixup race condition in activate_path()\n (bnc#708296).\n\n - dm-mpath: do not detach stale hardware handler\n (bnc#708296). dm-multipath: Improve logging\n (bnc#708296).\n\n scsi_dh: invoke callback if ->activate is not present\n (bnc#708296).\n\n - scsi_dh: return individual errors in scsi_dh_activate()\n (bnc#708296).\n\n - scsi_dh_alua: Decode EMC Clariion extended inquiry\n (bnc#708296).\n\n - scsi_dh_alua: Decode HP EVA array identifier\n (bnc#708296).\n\n - scsi_dh_alua: Evaluate state for all port groups\n (bnc#708296).\n\n - scsi_dh_alua: Fix missing close brace in\n alua_check_sense (bnc#843642).\n\n - scsi_dh_alua: Make stpg synchronous (bnc#708296).\n\n - scsi_dh_alua: Pass buffer as function argument\n (bnc#708296).\n\n - scsi_dh_alua: Re-evaluate port group states after STPG\n (bnc#708296).\n\n - scsi_dh_alua: Recheck state on transitioning\n (bnc#708296).\n\n - scsi_dh_alua: Rework rtpg workqueue (bnc#708296).\n\n - scsi_dh_alua: Use separate alua_port_group structure\n (bnc#708296).\n\n - scsi_dh_alua: Allow get_alua_data() to return NULL\n (bnc#839407).\n\n - scsi_dh_alua: asynchronous RTPG (bnc#708296).\n\n - scsi_dh_alua: correctly terminate target port strings\n (bnc#708296).\n\n - scsi_dh_alua: defer I/O while workqueue item is pending\n (bnc#708296).\n\n - scsi_dh_alua: Do not attach to RAID or enclosure devices\n (bnc#819979).\n\n - scsi_dh_alua: Do not attach to well-known LUNs\n (bnc#821980).\n\n - scsi_dh_alua: fine-grained locking in alua_rtpg_work()\n (bnc#708296).\n\n - scsi_dh_alua: invalid state information for 'optimized'\n paths (bnc#843445).\n\n - scsi_dh_alua: move RTPG to workqueue (bnc#708296).\n\n - scsi_dh_alua: move 'expiry' into PG structure\n (bnc#708296).\n\n - scsi_dh_alua: move some sense code handling into generic\n code (bnc#813245).\n\n - scsi_dh_alua: multipath failover fails with error 15\n (bnc#825696).\n\n - scsi_dh_alua: parse target device id (bnc#708296).\n\n - scsi_dh_alua: protect accesses to struct alua_port_group\n (bnc#708296).\n\n - scsi_dh_alua: put sense buffer on stack (bnc#708296).\n\n - scsi_dh_alua: reattaching device handler fails with\n 'Error 15' (bnc#843429).\n\n - scsi_dh_alua: remove locking when checking state\n (bnc#708296).\n\n - scsi_dh_alua: remove stale variable (bnc#708296).\n\n - scsi_dh_alua: retry RTPG on UNIT ATTENTION (bnc#708296).\n\n - scsi_dh_alua: retry command on 'mode parameter changed'\n sense code (bnc#843645).\n\n - scsi_dh_alua: simplify alua_check_sense() (bnc#843642).\n\n - scsi_dh_alua: simplify state update (bnc#708296).\n\n - scsi_dh_alua: use delayed_work (bnc#708296).\n\n - scsi_dh_alua: use flag for RTPG extended header\n (bnc#708296).\n\n - scsi_dh_alua: use local buffer for VPD inquiry\n (bnc#708296).\n\n - scsi_dh_alua: use spin_lock_irqsave for port group\n (bnc#708296).\n\n - scsi_dh_alua: defer I/O while workqueue item is pending\n (bnc#708296).\n\n - scsi_dh_alua: Rework rtpg workqueue (bnc#708296).\n\n - scsi_dh_alua: use delayed_work (bnc#708296).\n\n - scsi_dh_alua: move 'expiry' into PG structure\n (bnc#708296).\n\n - scsi_dh: invoke callback if ->activate is not present\n (bnc#708296).\n\n - scsi_dh_alua: correctly terminate target port strings\n (bnc#708296).\n\n - scsi_dh_alua: retry RTPG on UNIT ATTENTION (bnc#708296).\n\n - scsi_dh_alua: protect accesses to struct alua_port_group\n (bnc#708296).\n\n - scsi_dh_alua: fine-grained locking in alua_rtpg_work()\n (bnc#708296).\n\n - scsi_dh_alua: use spin_lock_irqsave for port group\n (bnc#708296).\n\n - scsi_dh_alua: remove locking when checking state\n (bnc#708296).\n\n - scsi_dh_alua: remove stale variable (bnc#708296).\n\n - scsi_dh: return individual errors in scsi_dh_activate()\n (bnc#708296). scsi_dh_alua: fixup misplaced brace in\n alua_initialize() (bnc#858831).\n\n drm/i915: add I915_PARAM_HAS_VEBOX to i915_getparam\n (bnc#831103,FATE#316109).\n\n - drm/i915: add I915_EXEC_VEBOX to\n i915_gem_do_execbuffer() (bnc#831103,FATE#316109).\n\n - drm/i915: add VEBOX into debugfs\n (bnc#831103,FATE#316109).\n\n - drm/i915: Enable vebox interrupts\n (bnc#831103,FATE#316109).\n\n - drm/i915: vebox interrupt get/put\n (bnc#831103,FATE#316109).\n\n - drm/i915: consolidate interrupt naming scheme\n (bnc#831103,FATE#316109).\n\n - drm/i915: Convert irq_refounct to struct\n (bnc#831103,FATE#316109).\n\n - drm/i915: make PM interrupt writes non-destructive\n (bnc#831103,FATE#316109).\n\n - drm/i915: Add PM regs to pre/post install\n (bnc#831103,FATE#316109).\n\n - drm/i915: Create an ivybridge_irq_preinstall\n (bnc#831103,FATE#316109).\n\n - drm/i915: Create a more generic pm handler for hsw+\n (bnc#831103,FATE#316109).\n\n - drm/i915: Vebox ringbuffer init\n (bnc#831103,FATE#316109).\n\n - drm/i915: add HAS_VEBOX (bnc#831103,FATE#316109).\n\n - drm/i915: Rename ring flush functions\n (bnc#831103,FATE#316109).\n\n - drm/i915: Add VECS semaphore bits\n (bnc#831103,FATE#316109).\n\n - drm/i915: Introduce VECS: the 4th ring\n (bnc#831103,FATE#316109).\n\n - drm/i915: Semaphore MBOX update generalization\n (bnc#831103,FATE#316109).\n\n - drm/i915: Comments for semaphore clarification\n (bnc#831103,FATE#316109).\n\n - drm/i915: fix gen4 digital port hotplug definitions\n (bnc#850103).\n\n - drm/mgag200: Bug fix: Modified pll algorithm for EH\n project (bnc#841654). drm: do not add inferred modes for\n monitors that do not support them (bnc #849809).\n\n s390/cio: dont abort verification after missing irq\n (bnc#837739,LTC#97047).\n\n - s390/cio: skip broken paths (bnc#837739,LTC#97047).\n\n - s390/cio: export vpm via sysfs (bnc#837739,LTC#97047).\n\n - s390/cio: handle unknown pgroup state\n (bnc#837739,LTC#97047).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # http://download.novell.com/patch/finder/?keywords=155ef3b4e3ba6228ccaef2cbc31bebd9\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?508af80c\"\n );\n # http://download.novell.com/patch/finder/?keywords=5bc4480468b77bc708f1a53315eda1a5\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?41c59b1d\"\n );\n # http://download.novell.com/patch/finder/?keywords=5bf653f731ed3521053f5341cf36caed\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?81371f29\"\n );\n # http://download.novell.com/patch/finder/?keywords=80a0fe93ee599f6907148b6d57bc4386\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?f2c10cd3\"\n );\n # http://download.novell.com/patch/finder/?keywords=84ede2844b021edeba8226469dc99257\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?4fd89842\"\n );\n # http://download.novell.com/patch/finder/?keywords=8fce986182f7f5e181facfac1db4aae3\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?90e9ccc2\"\n );\n # http://download.novell.com/patch/finder/?keywords=a863e6ada238d9cd2f9e9150d31fefff\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?09a3fa7e\"\n );\n # http://download.novell.com/patch/finder/?keywords=b711e9a5616f248e3074a4b6c9570dc5\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?4a374681\"\n );\n # http://download.novell.com/patch/finder/?keywords=d80e8135e5fe036068f832766fc4cfb9\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?fe789f30\"\n );\n # http://download.novell.com/patch/finder/?keywords=ff3893b2e58671834b0dfa8fb9b43401\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2c79cf66\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-2146.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-2930.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4345.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4483.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4511.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4514.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4515.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4587.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4592.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6367.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6368.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6376.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6378.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6380.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6383.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6463.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-7027.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/708296\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/733022\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/769035\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/769644\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/770541\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/787843\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/789359\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/793727\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/798050\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/805114\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/805740\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/806988\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/807434\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/810323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/813245\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/818064\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/818545\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/819979\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/820102\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/820338\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/820434\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/821619\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/821980\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/823618\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/825006\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/825696\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/825896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/826602\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/826756\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/826978\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/827527\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/827767\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/828236\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/831103\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/833097\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/834473\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/834708\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/834808\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/835074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/835186\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/836718\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/837206\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/837739\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/838623\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/839407\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/839973\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/840116\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/840226\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/841445\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/841654\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/842239\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843185\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843419\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843429\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843445\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843642\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843645\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843654\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/845352\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/845378\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/845621\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/845729\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/846036\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/846298\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/846654\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/846984\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/846989\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/847261\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/847660\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/847842\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848055\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848317\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848321\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848335\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848336\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848544\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848652\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848864\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849021\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849029\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849034\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849256\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849362\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849364\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849404\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849675\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849809\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849855\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849950\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/850072\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/850103\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/850324\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/850493\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/850640\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851066\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851101\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851290\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851314\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851603\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851879\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852153\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852373\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852558\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852559\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852624\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852652\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852761\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853050\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853051\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853052\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853053\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853428\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853465\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/854516\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/854546\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/854634\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/854722\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/856307\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/856481\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/858534\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/858831\"\n );\n # https://www.suse.com/support/update/announcement/2014/suse-su-20140189-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b0cc1610\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use YaST online_update.\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Server 11 SP3 for VMware :\n\nzypper in -t patch slessp3-kernel-8823 slessp3-kernel-8827\n\nSUSE Linux Enterprise Server 11 SP3 :\n\nzypper in -t patch slessp3-kernel-8823 slessp3-kernel-8824\nslessp3-kernel-8825 slessp3-kernel-8826 slessp3-kernel-8827\n\nSUSE Linux Enterprise High Availability Extension 11 SP3 :\n\nzypper in -t patch slehasp3-kernel-8823 slehasp3-kernel-8824\nslehasp3-kernel-8825 slehasp3-kernel-8826 slehasp3-kernel-8827\n\nSUSE Linux Enterprise Desktop 11 SP3 :\n\nzypper in -t patch sledsp3-kernel-8823 sledsp3-kernel-8827\n\nTo bring your system up-to-date, use 'zypper patch'.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-man\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-ec2-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-ec2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-pae-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-pae-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-pae-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-trace-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-trace-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-xen-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-xen-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLED11|SLES11)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED11 / SLES11\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES11\" && (! ereg(pattern:\"^3$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES11 SP3\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED11\" && (! ereg(pattern:\"^3$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED11 SP3\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-ec2-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-ec2-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-ec2-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-kmp-default-4.2.3_08_3.0.101_0.15-0.7.22\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-pae-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-pae-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-pae-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-kmp-pae-4.2.3_08_3.0.101_0.15-0.7.22\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"s390x\", reference:\"kernel-default-man-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"kernel-default-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"kernel-default-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"kernel-default-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"kernel-source-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"kernel-syms-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"kernel-trace-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"kernel-trace-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"kernel-trace-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-ec2-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-ec2-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-ec2-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-xen-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-xen-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-xen-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"xen-kmp-default-4.2.3_08_3.0.101_0.15-0.7.22\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-pae-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-pae-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-pae-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"xen-kmp-pae-4.2.3_08_3.0.101_0.15-0.7.22\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-default-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-default-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-default-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-default-extra-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-source-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-syms-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-trace-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-xen-extra-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-kmp-default-4.2.3_08_3.0.101_0.15-0.7.22\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-pae-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-pae-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-pae-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"kernel-pae-extra-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-kmp-pae-4.2.3_08_3.0.101_0.15-0.7.22\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-default-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-default-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-default-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-default-extra-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-source-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-syms-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-trace-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-xen-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-xen-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-xen-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-xen-extra-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"xen-kmp-default-4.2.3_08_3.0.101_0.15-0.7.22\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-pae-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-pae-base-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-pae-devel-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"kernel-pae-extra-3.0.101-0.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"xen-kmp-pae-4.2.3_08_3.0.101_0.15-0.7.22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-01-01T01:45:53", "bulletinFamily": "scanner", "description": "The SUSE Linux Enterprise 11 Service Pack 2 kernel was updated to\n3.0.101 and also includes various other bug and security fixes.\n\nA new feature was added :\n\n - supported.conf: marked net/netfilter/xt_set as supported\n (bnc#851066)(fate#313309)\n\nThe following security bugs have been fixed :\n\nCVE-2013-4587: Array index error in the kvm_vm_ioctl_create_vcpu\nfunction in virt/kvm/kvm_main.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows local users to gain privileges via a\nlarge id value. (bnc#853050)\n\nCVE-2013-6368: The KVM subsystem in the Linux kernel through\n3.12.5 allows local users to gain privileges or cause a\ndenial of service (system crash) via a VAPIC synchronization\noperation involving a page-end address. (bnc#853052)\n\nCVE-2013-6367: The apic_get_tmcct function in\narch/x86/kvm/lapic.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows guest OS users to cause a\ndenial of service (divide-by-zero error and host OS crash)\nvia crafted modifications of the TMICT value. (bnc#853051)\n\nCVE-2013-4592: Memory leak in the __kvm_set_memory_region\nfunction in virt/kvm/kvm_main.c in the Linux kernel before\n3.9 allows local users to cause a denial of service (memory\nconsumption) by leveraging certain device access to trigger\nmovement of memory slots. (bnc#851101)\n\nCVE-2013-6378: The lbs_debugfs_write function in\ndrivers/net/wireless/libertas/debugfs.c in the Linux kernel\nthrough 3.12.1 allows local users to cause a denial of\nservice (OOPS) by leveraging root privileges for a\nzero-length write operation. (bnc#852559)\n\nCVE-2013-4514: Multiple buffer overflows in\ndrivers/staging/wlags49_h2/wl_priv.c in the Linux kernel\nbefore 3.12 allow local users to cause a denial of service\nor possibly have unspecified other impact by leveraging the\nCAP_NET_ADMIN capability and providing a long station-name\nstring, related to the (1) wvlan_uil_put_info and (2)\nwvlan_set_station_nickname functions. (bnc#849029)\n\nCVE-2013-4515: The bcm_char_ioctl function in\ndrivers/staging/bcm/Bcmchar.c in the Linux kernel before\n3.12 does not initialize a certain data structure, which\nallows local users to obtain sensitive information from\nkernel memory via an IOCTL_BCM_GET_DEVICE_DRIVER_INFO ioctl\ncall. (bnc#849034)\n\nCVE-2013-7027: The ieee80211_radiotap_iterator_init function\nin net/wireless/radiotap.c in the Linux kernel before 3.11.7\ndoes not check whether a frame contains any data outside of\nthe header, which might allow attackers to cause a denial of\nservice (buffer over-read) via a crafted header.\n(bnc#854634)\n\nCVE-2013-4483: The ipc_rcu_putref function in ipc/util.c in\nthe Linux kernel before 3.10 does not properly manage a\nreference count, which allows local users to cause a denial\nof service (memory consumption or system crash) via a\ncrafted application. (bnc#848321)\n\nCVE-2013-4511: Multiple integer overflows in Alchemy LCD\nframe-buffer drivers in the Linux kernel before 3.12 allow\nlocal users to create a read-write memory mapping for the\nentirety of kernel memory, and consequently gain privileges,\nvia crafted mmap operations, related to the (1)\nau1100fb_fb_mmap function in drivers/video/au1100fb.c and\nthe (2) au1200fb_fb_mmap function in\ndrivers/video/au1200fb.c. (bnc#849021)\n\nCVE-2013-6380: The aac_send_raw_srb function in\ndrivers/scsi/aacraid/commctrl.c in the Linux kernel through\n3.12.1 does not properly validate a certain size value,\nwhich allows local users to cause a denial of service\n(invalid pointer dereference) or possibly have unspecified\nother impact via an FSACTL_SEND_RAW_SRB ioctl call that\ntriggers a crafted SRB command. (bnc#852373)\n\nCVE-2013-6463: Linux kernel built with the networking\nsupport(CONFIG_NET) is vulnerable to an information leakage\nflaw in the socket layer. It could occur while doing\nrecvmsg(2), recvfrom(2) socket calls. It occurs due to\nimproperly initialised msg_name & msg_namelen message header\nparameters. (bnc#854722)\n\nCVE-2013-6383: The aac_compat_ioctl function in\ndrivers/scsi/aacraid/linit.c in the Linux kernel before\n3.11.8 does not require the CAP_SYS_RAWIO capability, which\nallows local users to bypass intended access restrictions\nvia a crafted ioctl call. (bnc#852558)\n\nCVE-2013-4345: Off-by-one error in the get_prng_bytes\nfunction in crypto/ansi_cprng.c in the Linux kernel through\n3.11.4 makes it easier for context-dependent attackers to\ndefeat cryptographic protection mechanisms via multiple\nrequests for small amounts of data, leading to improper\nmanagement of the state of the consumed data. (bnc#840226)\n\nAlso the following non-security bugs have been fixed :\n\n - kabi: protect bind_conflict callback in struct\n inet_connection_sock_af_ops (bnc#823618).\n\n - printk: forcibly flush nmi ringbuffer if oops is in\n progress (bnc#849675).\n\n - blktrace: Send BLK_TN_PROCESS events to all running\n traces (bnc#838623).\n\n - x86/dumpstack: Fix printk_address for direct addresses\n (bnc#845621).\n\n - futex: fix handling of read-only-mapped hugepages (VM\n Functionality).\n\n - random: fix accounting race condition with lockless irq\n entropy_count update (bnc#789359).\n\n - Provide realtime priority kthread and workqueue boot\n options (bnc#836718).\n\n - sched: Fix several races in CFS_BANDWIDTH (bnc#848336).\n\n - sched: Fix cfs_bandwidth misuse of\n hrtimer_expires_remaining (bnc#848336).\n\n - sched: Fix hrtimer_cancel()/rq->lock deadlock\n (bnc#848336).\n\n - sched: Fix race on toggling cfs_bandwidth_used\n (bnc#848336).\n\n - sched: Fix buglet in return_cfs_rq_runtime().\n\n - sched: Guarantee new group-entities always have weight\n (bnc#848336).\n\n - sched: Use jump labels to reduce overhead when bandwidth\n control is inactive (bnc#848336). watchdog: Get rid of\n MODULE_ALIAS_MISCDEV statements (bnc#827767).\n\n tcp: bind() fix autoselection to share ports\n (bnc#823618).\n\n - tcp: bind() use stronger condition for bind_conflict\n (bnc#823618).\n\n - tcp: ipv6: bind() use stronger condition for\n bind_conflict (bnc#823618).\n\n - macvlan: disable LRO on lower device instead of macvlan\n (bnc#846984).\n\n - macvlan: introduce IFF_MACVLAN flag and helper function\n (bnc#846984).\n\n - macvlan: introduce macvlan_dev_real_dev() helper\n function (bnc#846984).\n\n - xen: netback: bump tx queue length (bnc#849404).\n\n - xen: xen_spin_kick fixed crash/lock release\n (bnc#807434)(bnc#848652).\n\n - xen: fixed USB passthrough issue (bnc#852624).\n\n - netxen: fix off by one bug in netxen_release_tx_buffer()\n (bnc#845729).\n\n - xfrm: invalidate dst on policy insertion/deletion\n (bnc#842239). xfrm: prevent ipcomp scratch buffer race\n condition (bnc#842239).\n\n crypto: Fix aes-xts parameter corruption (bnc#854546,\n LTC#100718).\n\n crypto: gf128mul - fix call to memset() (obvious fix).\n\n autofs4: autofs4_wait() vs. autofs4_catatonic_mode()\n race (bnc#851314).\n\n - autofs4: catatonic_mode vs. notify_daemon race\n (bnc#851314).\n\n - autofs4: close the races around autofs4_notify_daemon()\n (bnc#851314).\n\n - autofs4: deal with autofs4_write/autofs4_write races\n (bnc#851314).\n\n - autofs4 - dont clear DCACHE_NEED_AUTOMOUNT on rootless\n mount (bnc#851314).\n\n - autofs4 - fix deal with autofs4_write races\n (bnc#851314). autofs4 - use simple_empty() for empty\n directory check (bnc#851314).\n\n blkdev_max_block: make private to fs/buffer.c\n (bnc#820338).\n\n Avoid softlockup in shrink_dcache_for_umount_subtree\n (bnc#834473).\n\n dlm: set zero linger time on sctp socket (bnc#787843).\n\n - SUNRPC: Fix a data corruption issue when retransmitting\n RPC calls (bnc#855037)\n\n - nfs: Change NFSv4 to not recover locks after they are\n lost (bnc#828236). nfs: Adapt readdirplus to application\n usage patterns (bnc#834708).\n\n xfs: Account log unmount transaction correctly\n (bnc#849950).\n\n - xfs: improve ioend error handling (bnc#846036).\n\n - xfs: reduce ioend latency (bnc#846036).\n\n - xfs: use per-filesystem I/O completion workqueues\n (bnc#846036). xfs: Hide additional entries in struct\n xfs_mount (bnc#846036 bnc#848544).\n\n vfs: avoid ", "modified": "2020-01-02T00:00:00", "id": "SUSE_SU-2014-0140-1.NASL", "href": "https://www.tenable.com/plugins/nessus/83608", "published": "2015-05-20T00:00:00", "title": "SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2014:0140-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2014:0140-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83608);\n script_version(\"2.2\");\n script_cvs_date(\"Date: 2018/07/31 17:27:54\");\n\n script_cve_id(\"CVE-2013-4345\", \"CVE-2013-4483\", \"CVE-2013-4511\", \"CVE-2013-4514\", \"CVE-2013-4515\", \"CVE-2013-4587\", \"CVE-2013-4592\", \"CVE-2013-6367\", \"CVE-2013-6368\", \"CVE-2013-6378\", \"CVE-2013-6380\", \"CVE-2013-6383\", \"CVE-2013-6463\", \"CVE-2013-7027\");\n script_bugtraq_id(62740, 63445, 63509, 63512, 63518, 63790, 63886, 63887, 63888, 64013, 64270, 64291, 64328, 64669);\n\n script_name(english:\"SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2014:0140-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The SUSE Linux Enterprise 11 Service Pack 2 kernel was updated to\n3.0.101 and also includes various other bug and security fixes.\n\nA new feature was added :\n\n - supported.conf: marked net/netfilter/xt_set as supported\n (bnc#851066)(fate#313309)\n\nThe following security bugs have been fixed :\n\nCVE-2013-4587: Array index error in the kvm_vm_ioctl_create_vcpu\nfunction in virt/kvm/kvm_main.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows local users to gain privileges via a\nlarge id value. (bnc#853050)\n\nCVE-2013-6368: The KVM subsystem in the Linux kernel through\n3.12.5 allows local users to gain privileges or cause a\ndenial of service (system crash) via a VAPIC synchronization\noperation involving a page-end address. (bnc#853052)\n\nCVE-2013-6367: The apic_get_tmcct function in\narch/x86/kvm/lapic.c in the KVM subsystem in the Linux\nkernel through 3.12.5 allows guest OS users to cause a\ndenial of service (divide-by-zero error and host OS crash)\nvia crafted modifications of the TMICT value. (bnc#853051)\n\nCVE-2013-4592: Memory leak in the __kvm_set_memory_region\nfunction in virt/kvm/kvm_main.c in the Linux kernel before\n3.9 allows local users to cause a denial of service (memory\nconsumption) by leveraging certain device access to trigger\nmovement of memory slots. (bnc#851101)\n\nCVE-2013-6378: The lbs_debugfs_write function in\ndrivers/net/wireless/libertas/debugfs.c in the Linux kernel\nthrough 3.12.1 allows local users to cause a denial of\nservice (OOPS) by leveraging root privileges for a\nzero-length write operation. (bnc#852559)\n\nCVE-2013-4514: Multiple buffer overflows in\ndrivers/staging/wlags49_h2/wl_priv.c in the Linux kernel\nbefore 3.12 allow local users to cause a denial of service\nor possibly have unspecified other impact by leveraging the\nCAP_NET_ADMIN capability and providing a long station-name\nstring, related to the (1) wvlan_uil_put_info and (2)\nwvlan_set_station_nickname functions. (bnc#849029)\n\nCVE-2013-4515: The bcm_char_ioctl function in\ndrivers/staging/bcm/Bcmchar.c in the Linux kernel before\n3.12 does not initialize a certain data structure, which\nallows local users to obtain sensitive information from\nkernel memory via an IOCTL_BCM_GET_DEVICE_DRIVER_INFO ioctl\ncall. (bnc#849034)\n\nCVE-2013-7027: The ieee80211_radiotap_iterator_init function\nin net/wireless/radiotap.c in the Linux kernel before 3.11.7\ndoes not check whether a frame contains any data outside of\nthe header, which might allow attackers to cause a denial of\nservice (buffer over-read) via a crafted header.\n(bnc#854634)\n\nCVE-2013-4483: The ipc_rcu_putref function in ipc/util.c in\nthe Linux kernel before 3.10 does not properly manage a\nreference count, which allows local users to cause a denial\nof service (memory consumption or system crash) via a\ncrafted application. (bnc#848321)\n\nCVE-2013-4511: Multiple integer overflows in Alchemy LCD\nframe-buffer drivers in the Linux kernel before 3.12 allow\nlocal users to create a read-write memory mapping for the\nentirety of kernel memory, and consequently gain privileges,\nvia crafted mmap operations, related to the (1)\nau1100fb_fb_mmap function in drivers/video/au1100fb.c and\nthe (2) au1200fb_fb_mmap function in\ndrivers/video/au1200fb.c. (bnc#849021)\n\nCVE-2013-6380: The aac_send_raw_srb function in\ndrivers/scsi/aacraid/commctrl.c in the Linux kernel through\n3.12.1 does not properly validate a certain size value,\nwhich allows local users to cause a denial of service\n(invalid pointer dereference) or possibly have unspecified\nother impact via an FSACTL_SEND_RAW_SRB ioctl call that\ntriggers a crafted SRB command. (bnc#852373)\n\nCVE-2013-6463: Linux kernel built with the networking\nsupport(CONFIG_NET) is vulnerable to an information leakage\nflaw in the socket layer. It could occur while doing\nrecvmsg(2), recvfrom(2) socket calls. It occurs due to\nimproperly initialised msg_name & msg_namelen message header\nparameters. (bnc#854722)\n\nCVE-2013-6383: The aac_compat_ioctl function in\ndrivers/scsi/aacraid/linit.c in the Linux kernel before\n3.11.8 does not require the CAP_SYS_RAWIO capability, which\nallows local users to bypass intended access restrictions\nvia a crafted ioctl call. (bnc#852558)\n\nCVE-2013-4345: Off-by-one error in the get_prng_bytes\nfunction in crypto/ansi_cprng.c in the Linux kernel through\n3.11.4 makes it easier for context-dependent attackers to\ndefeat cryptographic protection mechanisms via multiple\nrequests for small amounts of data, leading to improper\nmanagement of the state of the consumed data. (bnc#840226)\n\nAlso the following non-security bugs have been fixed :\n\n - kabi: protect bind_conflict callback in struct\n inet_connection_sock_af_ops (bnc#823618).\n\n - printk: forcibly flush nmi ringbuffer if oops is in\n progress (bnc#849675).\n\n - blktrace: Send BLK_TN_PROCESS events to all running\n traces (bnc#838623).\n\n - x86/dumpstack: Fix printk_address for direct addresses\n (bnc#845621).\n\n - futex: fix handling of read-only-mapped hugepages (VM\n Functionality).\n\n - random: fix accounting race condition with lockless irq\n entropy_count update (bnc#789359).\n\n - Provide realtime priority kthread and workqueue boot\n options (bnc#836718).\n\n - sched: Fix several races in CFS_BANDWIDTH (bnc#848336).\n\n - sched: Fix cfs_bandwidth misuse of\n hrtimer_expires_remaining (bnc#848336).\n\n - sched: Fix hrtimer_cancel()/rq->lock deadlock\n (bnc#848336).\n\n - sched: Fix race on toggling cfs_bandwidth_used\n (bnc#848336).\n\n - sched: Fix buglet in return_cfs_rq_runtime().\n\n - sched: Guarantee new group-entities always have weight\n (bnc#848336).\n\n - sched: Use jump labels to reduce overhead when bandwidth\n control is inactive (bnc#848336). watchdog: Get rid of\n MODULE_ALIAS_MISCDEV statements (bnc#827767).\n\n tcp: bind() fix autoselection to share ports\n (bnc#823618).\n\n - tcp: bind() use stronger condition for bind_conflict\n (bnc#823618).\n\n - tcp: ipv6: bind() use stronger condition for\n bind_conflict (bnc#823618).\n\n - macvlan: disable LRO on lower device instead of macvlan\n (bnc#846984).\n\n - macvlan: introduce IFF_MACVLAN flag and helper function\n (bnc#846984).\n\n - macvlan: introduce macvlan_dev_real_dev() helper\n function (bnc#846984).\n\n - xen: netback: bump tx queue length (bnc#849404).\n\n - xen: xen_spin_kick fixed crash/lock release\n (bnc#807434)(bnc#848652).\n\n - xen: fixed USB passthrough issue (bnc#852624).\n\n - netxen: fix off by one bug in netxen_release_tx_buffer()\n (bnc#845729).\n\n - xfrm: invalidate dst on policy insertion/deletion\n (bnc#842239). xfrm: prevent ipcomp scratch buffer race\n condition (bnc#842239).\n\n crypto: Fix aes-xts parameter corruption (bnc#854546,\n LTC#100718).\n\n crypto: gf128mul - fix call to memset() (obvious fix).\n\n autofs4: autofs4_wait() vs. autofs4_catatonic_mode()\n race (bnc#851314).\n\n - autofs4: catatonic_mode vs. notify_daemon race\n (bnc#851314).\n\n - autofs4: close the races around autofs4_notify_daemon()\n (bnc#851314).\n\n - autofs4: deal with autofs4_write/autofs4_write races\n (bnc#851314).\n\n - autofs4 - dont clear DCACHE_NEED_AUTOMOUNT on rootless\n mount (bnc#851314).\n\n - autofs4 - fix deal with autofs4_write races\n (bnc#851314). autofs4 - use simple_empty() for empty\n directory check (bnc#851314).\n\n blkdev_max_block: make private to fs/buffer.c\n (bnc#820338).\n\n Avoid softlockup in shrink_dcache_for_umount_subtree\n (bnc#834473).\n\n dlm: set zero linger time on sctp socket (bnc#787843).\n\n - SUNRPC: Fix a data corruption issue when retransmitting\n RPC calls (bnc#855037)\n\n - nfs: Change NFSv4 to not recover locks after they are\n lost (bnc#828236). nfs: Adapt readdirplus to application\n usage patterns (bnc#834708).\n\n xfs: Account log unmount transaction correctly\n (bnc#849950).\n\n - xfs: improve ioend error handling (bnc#846036).\n\n - xfs: reduce ioend latency (bnc#846036).\n\n - xfs: use per-filesystem I/O completion workqueues\n (bnc#846036). xfs: Hide additional entries in struct\n xfs_mount (bnc#846036 bnc#848544).\n\n vfs: avoid 'attempt to access beyond end of device'\n warnings (bnc#820338).\n\n vfs: fix O_DIRECT read past end of block device\n (bnc#820338).\n\n cifs: Improve performance of browsing directories with\n several files (bnc#810323).\n\n cifs: Ensure cifs directories do not show up as files\n (bnc#826602).\n\n sd: avoid deadlocks when running under multipath\n (bnc#818545).\n\n - sd: fix crash when UA received on DIF enabled device\n (bnc#841445). sg: fix blk_get_queue usage (bnc#834808).\n\n block: factor out vector mergeable decision to a helper\n function (bnc#769644).\n\n block: modify __bio_add_page check to accept pages that\n do not start a new segment (bnc#769644).\n\n dm-multipath: abort all requests when failing a path\n (bnc#798050).\n\n - scsi: Add 'eh_deadline' to limit SCSI EH runtime\n (bnc#798050).\n\n - scsi: Allow error handling timeout to be specified\n (bnc#798050).\n\n - scsi: Fixup compilation warning (bnc#798050).\n\n - scsi: Retry failfast commands after EH (bnc#798050).\n\n - scsi: Warn on invalid command completion (bnc#798050).\n\n - scsi: kABI fixes (bnc#798050).\n\n - scsi: remove check for 'resetting' (bnc#798050).\n\n - advansys: Remove 'last_reset' references (bnc#798050).\n\n - cleanup setting task state in scsi_error_handler()\n (bnc#798050).\n\n - dc395: Move 'last_reset' into internal host structure\n (bnc#798050).\n\n - dpt_i2o: Remove DPTI_STATE_IOCTL (bnc#798050).\n\n - dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset\n (bnc#798050). tmscsim: Move 'last_reset' into host\n structure (bnc#798050).\n\n scsi_dh: invoke callback if ->activate is not present\n (bnc#708296).\n\n - scsi_dh: return individual errors in scsi_dh_activate()\n (bnc#708296).\n\n - scsi_dh_alua: Decode EMC Clariion extended inquiry\n (bnc#708296).\n\n - scsi_dh_alua: Decode HP EVA array identifier\n (bnc#708296).\n\n - scsi_dh_alua: Evaluate state for all port groups\n (bnc#708296).\n\n - scsi_dh_alua: Fix missing close brace in\n alua_check_sense (bnc#843642).\n\n - scsi_dh_alua: Make stpg synchronous (bnc#708296).\n\n - scsi_dh_alua: Pass buffer as function argument\n (bnc#708296).\n\n - scsi_dh_alua: Re-evaluate port group states after STPG\n (bnc#708296).\n\n - scsi_dh_alua: Recheck state on transitioning\n (bnc#708296).\n\n - scsi_dh_alua: Rework rtpg workqueue (bnc#708296).\n\n - scsi_dh_alua: Use separate alua_port_group structure\n (bnc#708296).\n\n - scsi_dh_alua: Allow get_alua_data() to return NULL\n (bnc#839407).\n\n - scsi_dh_alua: asynchronous RTPG (bnc#708296).\n\n - scsi_dh_alua: correctly terminate target port strings\n (bnc#708296).\n\n - scsi_dh_alua: defer I/O while workqueue item is pending\n (bnc#708296).\n\n - scsi_dh_alua: Do not attach to RAID or enclosure devices\n (bnc#819979).\n\n - scsi_dh_alua: Do not attach to well-known LUNs\n (bnc#821980).\n\n - scsi_dh_alua: fine-grained locking in alua_rtpg_work()\n (bnc#708296).\n\n - scsi_dh_alua: invalid state information for 'optimized'\n paths (bnc#843445).\n\n - scsi_dh_alua: move RTPG to workqueue (bnc#708296).\n\n - scsi_dh_alua: move 'expiry' into PG structure\n (bnc#708296).\n\n - scsi_dh_alua: move some sense code handling into generic\n code (bnc#813245).\n\n - scsi_dh_alua: multipath failover fails with error 15\n (bnc#825696).\n\n - scsi_dh_alua: parse target device id (bnc#708296).\n\n - scsi_dh_alua: protect accesses to struct alua_port_group\n (bnc#708296).\n\n - scsi_dh_alua: put sense buffer on stack (bnc#708296).\n\n - scsi_dh_alua: reattaching device handler fails with\n 'Error 15' (bnc#843429).\n\n - scsi_dh_alua: remove locking when checking state\n (bnc#708296).\n\n - scsi_dh_alua: remove stale variable (bnc#708296).\n\n - scsi_dh_alua: retry RTPG on UNIT ATTENTION (bnc#708296).\n\n - scsi_dh_alua: retry command on 'mode parameter changed'\n sense code (bnc#843645).\n\n - scsi_dh_alua: simplify alua_check_sense() (bnc#843642).\n\n - scsi_dh_alua: simplify state update (bnc#708296).\n\n - scsi_dh_alua: use delayed_work (bnc#708296).\n\n - scsi_dh_alua: use flag for RTPG extended header\n (bnc#708296).\n\n - scsi_dh_alua: use local buffer for VPD inquiry\n (bnc#708296). scsi_dh_alua: use spin_lock_irqsave for\n port group (bnc#708296).\n\n lpfc: Do not free original IOCB whenever ABTS fails\n (bnc#806988).\n\n - lpfc: Fix kernel warning on spinlock usage (bnc#806988).\n lpfc: Fixed system panic due to midlayer abort\n (bnc#806988).\n\n qla2xxx: Add module parameter to override the default\n request queue size (bnc#826756).\n\n qla2xxx: Module parameter 'ql2xasynclogin' (bnc#825896).\n\n bna: do not register ndo_set_rx_mode callback\n (bnc#847261).\n\n - hv: handle more than just WS2008 in KVP negotiation\n (bnc#850640). drm: do not add inferred modes for\n monitors that do not support them (bnc#849809).\n\n pci/quirks: Modify reset method for Chelsio T4\n (bnc#831168).\n\n - pci: fix truncation of resource size to 32 bits\n (bnc#843419).\n\n - pci: pciehp: Retrieve link speed after link is trained\n (bnc#820102).\n\n - pci: Separate pci_bus_read_dev_vendor_id from\n pci_scan_device (bnc#820102).\n\n - pci: pciehp: replace unconditional sleep with config\n space access check (bnc#820102).\n\n - pci: pciehp: make check_link_active more helpful\n (bnc#820102).\n\n - pci: pciehp: Add pcie_wait_link_not_active()\n (bnc#820102).\n\n - pci: pciehp: Add Disable/enable link functions\n (bnc#820102). pci: pciehp: Disable/enable link during\n slot power off/on (bnc#820102).\n\n mlx4: allocate just enough pages instead of always 4\n pages (bnc#835186 bnc#835074).\n\n - mlx4: allow order-0 memory allocations in RX path\n (bnc#835186 bnc#835074).\n\n - net/mlx4: use one page fragment per incoming frame\n (bnc#835186 bnc#835074). qeth: request length checking\n in snmp ioctl (bnc#849848, LTC#99511).\n\n cio: add message for timeouts on internal I/O\n (bnc#837739,LTC#97047).\n\n - s390/cio: dont abort verification after missing irq\n (bnc#837739,LTC#97047).\n\n - s390/cio: skip broken paths (bnc#837739,LTC#97047).\n\n - s390/cio: export vpm via sysfs (bnc#837739,LTC#97047).\n\n - s390/cio: handle unknown pgroup state\n (bnc#837739,LTC#97047).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # http://download.novell.com/patch/finder/?keywords=282330ca15c25c5d414afa797fd00055\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?868cf5d3\"\n );\n # http://download.novell.com/patch/finder/?keywords=3d92bf18525263d6502455d7bb30778d\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2a485ef5\"\n );\n # http://download.novell.com/patch/finder/?keywords=457afa810386e3c89cbe7d34f2669ec6\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ca5a28ab\"\n );\n # http://download.novell.com/patch/finder/?keywords=67177844fdc4ad7928d0b72e827b1792\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?01806ec9\"\n );\n # http://download.novell.com/patch/finder/?keywords=6d440d2c2b586181d099e77b38c3f10c\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6a85609c\"\n );\n # http://download.novell.com/patch/finder/?keywords=7e6471ccc2fab115e43fdd4825b2703d\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?fa4ec765\"\n );\n # http://download.novell.com/patch/finder/?keywords=8f7b9d1a1e950072493fafe9d3ce7b0b\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?778d6b1b\"\n );\n # http://download.novell.com/patch/finder/?keywords=96c8b378c86a8c1970d130e0ca6c215e\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?708c45bc\"\n );\n # http://download.novell.com/patch/finder/?keywords=9a3c3a81214dce764b5a30eb1137ff05\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?85e179a3\"\n );\n # http://download.novell.com/patch/finder/?keywords=a3c4d33c79469ac8a1f49845dce098d2\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9a65d93f\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4345.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4483.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4511.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4514.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4515.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4587.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4592.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6367.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6368.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6378.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6380.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6383.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-6463.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-7027.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/708296\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/769644\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/787843\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/789359\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/798050\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/806988\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/807434\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/810323\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/813245\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/818545\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/819979\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/820102\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/820338\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/821980\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/823618\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/825696\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/825896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/826602\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/826756\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/827767\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/828236\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/831168\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/834473\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/834708\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/834808\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/835074\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/835186\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/836718\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/837739\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/838623\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/839407\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/840226\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/841445\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/842239\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843419\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843429\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843445\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843642\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/843645\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/845621\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/845729\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/846036\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/846984\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/847261\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848321\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848336\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848544\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/848652\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849021\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849029\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849034\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849404\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849675\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849809\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849848\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/849950\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/850640\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851066\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851101\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/851314\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852373\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852558\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852559\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/852624\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853050\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853051\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/853052\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/854546\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/854634\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/854722\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/855037\"\n );\n # https://www.suse.com/support/update/announcement/2014/suse-su-20140140-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ff8b4ee9\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use YaST online_update.\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Server 11 SP2 for VMware :\n\nzypper in -t patch slessp2-kernel-8779 slessp2-kernel-8791\n\nSUSE Linux Enterprise Server 11 SP2 :\n\nzypper in -t patch slessp2-kernel-8779 slessp2-kernel-8780\nslessp2-kernel-8781 slessp2-kernel-8791 slessp2-kernel-8792\n\nSUSE Linux Enterprise High Availability Extension 11 SP2 :\n\nzypper in -t patch sleshasp2-kernel-8779 sleshasp2-kernel-8780\nsleshasp2-kernel-8781 sleshasp2-kernel-8791 sleshasp2-kernel-8792\n\nSUSE Linux Enterprise Desktop 11 SP2 :\n\nzypper in -t patch sledsp2-kernel-8779 sledsp2-kernel-8791\n\nTo bring your system up-to-date, use 'zypper patch'.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-default-man\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-ec2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-ec2-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-ec2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-pae-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-pae-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-pae-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-source\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-syms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-trace-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-trace-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-trace-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-xen-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:kernel-xen-extra\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/01/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLED11|SLES11)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED11 / SLES11\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES11\" && (! ereg(pattern:\"^2$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES11 SP2\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED11\" && (! ereg(pattern:\"^2$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED11 SP2\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-ec2-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-ec2-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-ec2-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-xen-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-xen-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-xen-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"xen-kmp-default-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"xen-kmp-trace-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-pae-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-pae-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-pae-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"x86_64\", reference:\"xen-kmp-pae-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"s390x\", reference:\"kernel-default-man-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", reference:\"kernel-default-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", reference:\"kernel-default-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", reference:\"kernel-default-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", reference:\"kernel-source-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", reference:\"kernel-syms-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", reference:\"kernel-trace-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", reference:\"kernel-trace-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", reference:\"kernel-trace-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-ec2-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-ec2-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-ec2-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-xen-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-xen-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-xen-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"xen-kmp-default-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"xen-kmp-trace-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-pae-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-pae-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-pae-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"2\", cpu:\"i586\", reference:\"xen-kmp-pae-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-default-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-default-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-default-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-default-extra-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-source-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-syms-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-trace-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-trace-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-trace-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-trace-extra-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-xen-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-xen-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-xen-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-xen-extra-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"xen-kmp-default-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"xen-kmp-trace-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-pae-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-pae-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-pae-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"kernel-pae-extra-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"x86_64\", reference:\"xen-kmp-pae-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-default-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-default-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-default-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-default-extra-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-source-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-syms-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-trace-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-trace-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-trace-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-trace-extra-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-xen-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-xen-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-xen-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-xen-extra-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"xen-kmp-default-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"xen-kmp-trace-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-pae-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-pae-base-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-pae-devel-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"kernel-pae-extra-3.0.101-0.7.15.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"2\", cpu:\"i586\", reference:\"xen-kmp-pae-4.1.6_04_3.0.101_0.7.15-0.5.12\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"kernel\");\n}\n", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}], "cve": [{"lastseen": "2019-05-29T18:13:04", "bulletinFamily": "NVD", "description": "The bcm_char_ioctl function in drivers/staging/bcm/Bcmchar.c in the Linux kernel before 3.12 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory via an IOCTL_BCM_GET_DEVICE_DRIVER_INFO ioctl call.", "modified": "2014-03-06T04:47:00", "id": "CVE-2013-4515", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4515", "published": "2013-11-12T14:35:00", "title": "CVE-2013-4515", "type": "cve", "cvss": {"score": 4.9, "vector": "AV:L/AC:L/Au:N/C:C/I:N/A:N"}}, {"lastseen": "2019-05-29T18:13:07", "bulletinFamily": "NVD", "description": "The ieee80211_radiotap_iterator_init function in net/wireless/radiotap.c in the Linux kernel before 3.11.7 does not check whether a frame contains any data outside of the header, which might allow attackers to cause a denial of service (buffer over-read) via a crafted header.", "modified": "2014-03-16T04:43:00", "id": "CVE-2013-7027", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7027", "published": "2013-12-09T18:55:00", "title": "CVE-2013-7027", "type": "cve", "cvss": {"score": 6.1, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:13:06", "bulletinFamily": "NVD", "description": "The aac_compat_ioctl function in drivers/scsi/aacraid/linit.c in the Linux kernel before 3.11.8 does not require the CAP_SYS_RAWIO capability, which allows local users to bypass intended access restrictions via a crafted ioctl call.", "modified": "2014-03-26T04:54:00", "id": "CVE-2013-6383", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6383", "published": "2013-11-27T04:43:00", "title": "CVE-2013-6383", "type": "cve", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:13:06", "bulletinFamily": "NVD", "description": "The uio_mmap_physical function in drivers/uio/uio.c in the Linux kernel before 3.12 does not validate the size of a memory block, which allows local users to cause a denial of service (memory corruption) or possibly gain privileges via crafted mmap operations, a different vulnerability than CVE-2013-4511.", "modified": "2014-01-08T04:42:00", "id": "CVE-2013-6763", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6763", "published": "2013-11-12T14:35:00", "title": "CVE-2013-6763", "type": "cve", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:13:04", "bulletinFamily": "NVD", "description": "Multiple buffer overflows in drivers/staging/wlags49_h2/wl_priv.c in the Linux kernel before 3.12 allow local users to cause a denial of service or possibly have unspecified other impact by leveraging the CAP_NET_ADMIN capability and providing a long station-name string, related to the (1) wvlan_uil_put_info and (2) wvlan_set_station_nickname functions.", "modified": "2016-12-31T02:59:00", "id": "CVE-2013-4514", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4514", "published": "2013-11-12T14:35:00", "title": "CVE-2013-4514", "type": "cve", "cvss": {"score": 4.7, "vector": "AV:L/AC:M/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:13:04", "bulletinFamily": "NVD", "description": "Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted mmap operations, related to the (1) au1100fb_fb_mmap function in drivers/video/au1100fb.c and the (2) au1200fb_fb_mmap function in drivers/video/au1200fb.c.", "modified": "2014-03-06T04:47:00", "id": "CVE-2013-4511", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4511", "published": "2013-11-12T14:35:00", "title": "CVE-2013-4511", "type": "cve", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:13:06", "bulletinFamily": "NVD", "description": "The lbs_debugfs_write function in drivers/net/wireless/libertas/debugfs.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service (OOPS) by leveraging root privileges for a zero-length write operation.", "modified": "2014-07-17T05:01:00", "id": "CVE-2013-6378", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6378", "published": "2013-11-27T04:43:00", "title": "CVE-2013-6378", "type": "cve", "cvss": {"score": 4.4, "vector": "AV:L/AC:M/Au:S/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:13:04", "bulletinFamily": "NVD", "description": "Memory leak in the __kvm_set_memory_region function in virt/kvm/kvm_main.c in the Linux kernel before 3.9 allows local users to cause a denial of service (memory consumption) by leveraging certain device access to trigger movement of memory slots.", "modified": "2014-03-06T04:47:00", "id": "CVE-2013-4592", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4592", "published": "2013-11-20T13:19:00", "title": "CVE-2013-4592", "type": "cve", "cvss": {"score": 4.0, "vector": "AV:L/AC:H/Au:N/C:N/I:N/A:C"}}, {"lastseen": "2019-05-29T18:13:04", "bulletinFamily": "NVD", "description": "Interpretation conflict in drivers/md/dm-snap-persistent.c in the Linux kernel through 3.11.6 allows remote authenticated users to obtain sensitive information or modify data via a crafted mapping to a snapshot block device.", "modified": "2019-04-22T17:48:00", "id": "CVE-2013-4299", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4299", "published": "2013-10-24T10:53:00", "title": "CVE-2013-4299", "type": "cve", "cvss": {"score": 6.0, "vector": "AV:N/AC:M/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2019-05-29T18:13:04", "bulletinFamily": "NVD", "description": "The Linux kernel before 3.12, when UDP Fragmentation Offload (UFO) is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service (memory corruption and system crash) or possibly gain privileges via a crafted application that uses the UDP_CORK option in a setsockopt system call and sends both short and long packets, related to the ip_ufo_append_data function in net/ipv4/ip_output.c and the ip6_ufo_append_data function in net/ipv6/ip6_output.c.", "modified": "2018-01-09T02:29:00", "id": "CVE-2013-4470", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4470", "published": "2013-11-04T15:55:00", "title": "CVE-2013-4470", "type": "cve", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:50", "bulletinFamily": "software", "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n _______________________________________________________________________\r\n\r\n Mandriva Linux Security Advisory MDVSA-2013:291\r\n http://www.mandriva.com/en/support/security/\r\n _______________________________________________________________________\r\n\r\n Package : kernel\r\n Date : December 17, 2013\r\n Affected: Business Server 1.0\r\n _______________________________________________________________________\r\n\r\n Problem Description:\r\n\r\n Multiple vulnerabilities has been found and corrected in the Linux\r\n kernel:\r\n \r\n The Linux kernel before 3.12.2 does not properly use the get_dumpable\r\n function, which allows local users to bypass intended ptrace\r\n restrictions or obtain sensitive information from IA64 scratch\r\n registers via a crafted application, related to kernel/ptrace.c and\r\n arch/ia64/include/asm/processor.h (CVE-2013-2929).\r\n \r\n The perf_trace_event_perm function in kernel/trace/trace_event_perf.c\r\n in the Linux kernel before 3.12.2 does not properly restrict access\r\n to the perf subsystem, which allows local users to enable function\r\n tracing via a crafted application (CVE-2013-2930).\r\n \r\n Multiple integer overflows in Alchemy LCD frame-buffer drivers in the\r\n Linux kernel before 3.12 allow local users to create a read-write\r\n memory mapping for the entirety of kernel memory, and consequently\r\n gain privileges, via crafted mmap operations, related to the (1)\r\n au1100fb_fb_mmap function in drivers/video/au1100fb.c and the (2)\r\n au1200fb_fb_mmap function in drivers/video/au1200fb.c (CVE-2013-4511).\r\n \r\n Buffer overflow in the exitcode_proc_write function in\r\n arch/um/kernel/exitcode.c in the Linux kernel before 3.12 allows\r\n local users to cause a denial of service or possibly have unspecified\r\n other impact by leveraging root privileges for a write operation\r\n (CVE-2013-4512).\r\n \r\n Multiple buffer overflows in drivers/staging/wlags49_h2/wl_priv.c\r\n in the Linux kernel before 3.12 allow local users to cause a\r\n denial of service or possibly have unspecified other impact\r\n by leveraging the CAP_NET_ADMIN capability and providing a long\r\n station-name string, related to the (1) wvlan_uil_put_info and (2)\r\n wvlan_set_station_nickname functions (CVE-2013-4514).\r\n \r\n The bcm_char_ioctl function in drivers/staging/bcm/Bcmchar.c in\r\n the Linux kernel before 3.12 does not initialize a certain data\r\n structure, which allows local users to obtain sensitive information\r\n from kernel memory via an IOCTL_BCM_GET_DEVICE_DRIVER_INFO ioctl call\r\n (CVE-2013-4515).\r\n \r\n Memory leak in the __kvm_set_memory_region function in\r\n virt/kvm/kvm_main.c in the Linux kernel before 3.9 allows local users\r\n to cause a denial of service (memory consumption) by leveraging certain\r\n device access to trigger movement of memory slots (CVE-2013-4592).\r\n \r\n The lbs_debugfs_write function in\r\n drivers/net/wireless/libertas/debugfs.c in the Linux kernel through\r\n 3.12.1 allows local users to cause a denial of service (OOPS)\r\n by leveraging root privileges for a zero-length write operation\r\n (CVE-2013-6378).\r\n \r\n The aac_send_raw_srb function in drivers/scsi/aacraid/commctrl.c in\r\n the Linux kernel through 3.12.1 does not properly validate a certain\r\n size value, which allows local users to cause a denial of service\r\n (invalid pointer dereference) or possibly have unspecified other\r\n impact via an FSACTL_SEND_RAW_SRB ioctl call that triggers a crafted\r\n SRB command (CVE-2013-6380).\r\n \r\n Buffer overflow in the qeth_snmp_command function in\r\n drivers/s390/net/qeth_core_main.c in the Linux kernel through 3.12.1\r\n allows local users to cause a denial of service or possibly have\r\n unspecified other impact via an SNMP ioctl call with a length value\r\n that is incompatible with the command-buffer size (CVE-2013-6381).\r\n \r\n The aac_compat_ioctl function in drivers/scsi/aacraid/linit.c in\r\n the Linux kernel before 3.11.8 does not require the CAP_SYS_RAWIO\r\n capability, which allows local users to bypass intended access\r\n restrictions via a crafted ioctl call (CVE-2013-6383).\r\n \r\n The uio_mmap_physical function in drivers/uio/uio.c in the Linux\r\n kernel before 3.12 does not validate the size of a memory block, which\r\n allows local users to cause a denial of service (memory corruption)\r\n or possibly gain privileges via crafted mmap operations, a different\r\n vulnerability than CVE-2013-4511 (CVE-2013-6763).\r\n \r\n The updated packages provides a solution for these security issues.\r\n _______________________________________________________________________\r\n\r\n References:\r\n\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2929\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2930\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4511\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4512\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4514\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4515\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4592\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6378\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6380\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6381\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6383\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6763\r\n _______________________________________________________________________\r\n\r\n Updated Packages:\r\n\r\n Mandriva Business Server 1/X86_64:\r\n b2ec18573cfce8e2c59f3837bee54986 mbs1/x86_64/cpupower-3.4.71-1.1.mbs1.x86_64.rpm\r\n 4223a45307eed3f34f1c2fc91e47b2bc mbs1/x86_64/kernel-firmware-3.4.71-1.1.mbs1.noarch.rpm\r\n 12ade5821162c60735934c7d8074abbf mbs1/x86_64/kernel-headers-3.4.71-1.1.mbs1.x86_64.rpm\r\n 596969c53ae7ef58106d58c3ddcda017 mbs1/x86_64/kernel-server-3.4.71-1.1.mbs1.x86_64.rpm\r\n 447b51d9b8056a545b56a7b2e4d10c00 mbs1/x86_64/kernel-server-devel-3.4.71-1.1.mbs1.x86_64.rpm\r\n ca6e8ac266deddfdb820498602d83562 mbs1/x86_64/kernel-source-3.4.71-1.mbs1.noarch.rpm\r\n 636862bf8abc059c22bf0f80192682c1 mbs1/x86_64/lib64cpupower0-3.4.71-1.1.mbs1.x86_64.rpm\r\n 68acfb49a9d72e5e64fe4a404b4de306 mbs1/x86_64/lib64cpupower-devel-3.4.71-1.1.mbs1.x86_64.rpm\r\n 4794fa50688c49af900d4b215e0b1a3b mbs1/x86_64/perf-3.4.71-1.1.mbs1.x86_64.rpm \r\n 08d165f0b55b13663fc83d23d9853c70 mbs1/SRPMS/cpupower-3.4.71-1.1.mbs1.src.rpm\r\n 1d536b477305aeacc465861b6cf27d36 mbs1/SRPMS/kernel-firmware-3.4.71-1.1.mbs1.src.rpm\r\n 7c454f625ecd42711dd7c1081db66adb mbs1/SRPMS/kernel-headers-3.4.71-1.1.mbs1.src.rpm\r\n d6dbb3c4025edf28de366a595bb70017 mbs1/SRPMS/kernel-server-3.4.71-1.1.mbs1.src.rpm\r\n ae18c854eb9d554cb1dbc8783836546b mbs1/SRPMS/kernel-source-3.4.71-1.mbs1.src.rpm\r\n 5d73b86d8323d5c682d1e840c3f5a1ee mbs1/SRPMS/perf-3.4.71-1.1.mbs1.src.rpm\r\n _______________________________________________________________________\r\n\r\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\r\n of md5 checksums and GPG signatures is performed automatically for you.\r\n\r\n All packages are signed by Mandriva for security. You can obtain the\r\n GPG public key of the Mandriva Security Team by executing:\r\n\r\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\r\n\r\n You can view other update advisories for Mandriva Linux at:\r\n\r\n http://www.mandriva.com/en/support/security/advisories/\r\n\r\n If you want to report vulnerabilities, please contact\r\n\r\n security_(at)_mandriva.com\r\n _______________________________________________________________________\r\n\r\n Type Bits/KeyID Date User ID\r\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\r\n <security*mandriva.com>\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.12 (GNU/Linux)\r\n\r\niD8DBQFSsHyomqjQ0CJFipgRAuHZAJ4iucAvE9Ujo1RPE3X19MQqW0bgMQCgyo1S\r\nxosocZxNYfjd7/v82ZxQHyM=\r\n=GSnA\r\n-----END PGP SIGNATURE-----\r\n", "modified": "2013-12-23T00:00:00", "published": "2013-12-23T00:00:00", "id": "SECURITYVULNS:DOC:30130", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:30130", "title": "[ MDVSA-2013:291 ] kernel", "type": "securityvulns", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:09:53", "bulletinFamily": "software", "description": "Weak permissions, information leakage, privilege escalation, DoS.", "modified": "2013-12-23T00:00:00", "published": "2013-12-23T00:00:00", "id": "SECURITYVULNS:VULN:13438", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:13438", "title": "Linux kernel multiple security vulnerabilities", "type": "securityvulns", "cvss": {"score": 6.9, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:50", "bulletinFamily": "software", "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-2075-1\r\nJanuary 03, 2014\r\n\r\nlinux vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 13.10\r\n\r\nSummary:\r\n\r\nSeveral security issues were fixed in the kernel.\r\n\r\nSoftware Description:\r\n- linux: Linux kernel\r\n\r\nDetails:\r\n\r\nVasily Kulikov reported a flaw in the Linux kernel's implementation of\r\nptrace. An unprivileged local user could exploit this flaw to obtain\r\nsensitive information from kernel memory. (CVE-2013-2929)\r\n\r\nDave Jones and Vince Weaver reported a flaw in the Linux kernel's per event\r\nsubsystem that allows normal users to enable function tracing. An\r\nunprivileged local user could exploit this flaw to obtain potentially\r\nsensitive information from the kernel. (CVE-2013-2930)\r\n\r\nStephan Mueller reported an error in the Linux kernel's ansi cprng random\r\nnumber generator. This flaw makes it easier for a local attacker to break\r\ncryptographic protections. (CVE-2013-4345)\r\n\r\nJason Wang discovered a bug in the network flow dissector in the Linux\r\nkernel. A remote attacker could exploit this flaw to cause a denial of\r\nservice (infinite loop). (CVE-2013-4348)\r\n\r\nMultiple integer overflow flaws were discovered in the Alchemy LCD frame-\r\nbuffer drivers in the Linux kernel. An unprivileged local user could\r\nexploit this flaw to gain administrative privileges. (CVE-2013-4511)\r\n\r\nNico Golde and Fabian Yamaguchi reported a buffer overflow in the Ozmo\r\nDevices USB over WiFi devices. A local user could exploit this flaw to\r\ncause a denial of service or possibly unspecified impact. (CVE-2013-4513)\r\n\r\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\r\ndriver for Agere Systems HERMES II Wireless PC Cards. A local user with the\r\nCAP_NET_ADMIN capability could exploit this flaw to cause a denial of\r\nservice or possibly gain adminstrative priviliges. (CVE-2013-4514)\r\n\r\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\r\ndriver for Beceem WIMAX chipset based devices. An unprivileged local user\r\ncould exploit this flaw to obtain sensitive information from kernel memory.\r\n(CVE-2013-4515)\r\n\r\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\r\ndriver for the SystemBase Multi-2/PCI serial card. An unprivileged user\r\ncould obtain sensitive information from kernel memory. (CVE-2013-4516)\r\n\r\nNico Golde and Fabian Yamaguchi reported a flaw in the Linux kernel's\r\ndebugfs filesystem. An administrative local user could exploit this flaw to\r\ncause a denial of service (OOPS). (CVE-2013-6378)\r\n\r\nNico Golde and Fabian Yamaguchi reported a flaw in the driver for Adaptec\r\nAACRAID scsi raid devices in the Linux kernel. A local user could use this\r\nflaw to cause a denial of service or possibly other unspecified impact.\r\n(CVE-2013-6380)\r\n\r\nA flaw was discovered in the Linux kernel's compat ioctls for Adaptec\r\nAACRAID scsi raid devices. An unprivileged local user could send\r\nadministrative commands to these devices potentially compromising the data\r\nstored on the device. (CVE-2013-6383)\r\n\r\nNico Golde reported a flaw in the Linux kernel's userspace IO (uio) driver.\r\nA local user could exploit this flaw to cause a denial of service (memory\r\ncorruption) or possibly gain privileges. (CVE-2013-6763)\r\n\r\nA race condition flaw was discovered in the Linux kernel's ipc shared\r\nmemory implimentation. A local user could exploit this flaw to cause a\r\ndenial of service (system crash) or possibly have unspecied other impacts.\r\n(CVE-2013-7026)\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 13.10:\r\n linux-image-3.11.0-15-generic 3.11.0-15.23\r\n linux-image-3.11.0-15-generic-lpae 3.11.0-15.23\r\n\r\nAfter a standard system update you need to reboot your computer to make\r\nall the necessary changes.\r\n\r\nATTENTION: Due to an unavoidable ABI change the kernel updates have\r\nbeen given a new version number, which requires you to recompile and\r\nreinstall all third party kernel modules you might have installed. If\r\nyou use linux-restricted-modules, you have to update that package as\r\nwell to get modules which work with the new kernel version. Unless you\r\nmanually uninstalled the standard kernel metapackages (e.g. linux-generic,\r\nlinux-server, linux-powerpc), a standard system upgrade will automatically\r\nperform this as well.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-2075-1\r\n CVE-2013-2929, CVE-2013-2930, CVE-2013-4345, CVE-2013-4348,\r\n CVE-2013-4511, CVE-2013-4513, CVE-2013-4514, CVE-2013-4515,\r\n CVE-2013-4516, CVE-2013-6378, CVE-2013-6380, CVE-2013-6383,\r\n CVE-2013-6763, CVE-2013-7026\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/linux/3.11.0-15.23\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n", "modified": "2014-01-08T00:00:00", "published": "2014-01-08T00:00:00", "id": "SECURITYVULNS:DOC:30152", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:30152", "title": "[USN-2075-1] Linux kernel vulnerabilities", "type": "securityvulns", "cvss": {"score": 7.1, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2019-08-13T18:44:40", "bulletinFamily": "unix", "description": "The kernel-rt packages contain the Linux kernel, the core of any Linux\noperating system.\n\n* A flaw was found in the way the Linux kernel's TCP/IP protocol suite\nimplementation handled sending of certain UDP packets over sockets that\nused the UDP_CORK option when the UDP Fragmentation Offload (UFO) feature\nwas enabled on the output device. A local, unprivileged user could use this\nflaw to cause a denial of service or, potentially, escalate their\nprivileges on the system. (CVE-2013-4470, Important)\n\n* A flaw was found in the way the perf_trace_event_perm() function in the\nLinux kernel checked permissions for the function tracer functionality.\nAn unprivileged local user could use this flaw to enable function tracing\nand cause a denial of service on the system. (CVE-2013-2930, Moderate)\n\n* A flaw was found in the way the net_ctl_permissions() function in the\nLinux kernel checked access permissions. A local, unprivileged user could\npotentially use this flaw to access certain files in /proc/sys/net\nregardless of the underlying file system permissions. (CVE-2013-4270,\nModerate)\n\n* A flaw was found in the way the Linux kernel's Adaptec RAID controller\n(aacraid) checked permissions of compat IOCTLs. A local attacker could use\nthis flaw to bypass intended security restrictions. (CVE-2013-6383,\nModerate)\n\n* A flaw was found in the way the get_dumpable() function return value was\ninterpreted in the ptrace subsystem of the Linux kernel. When\n'fs.suid_dumpable' was set to 2, a local, unprivileged local user could\nuse this flaw to bypass intended ptrace restrictions and obtain\npotentially sensitive information. (CVE-2013-2929, Low)\n\n* An invalid pointer dereference flaw was found in the Marvell 8xxx\nLibertas WLAN (libertas) driver in the Linux kernel. A local user able to\nwrite to a file that is provided by the libertas driver and located on the\ndebug file system (debugfs) could use this flaw to crash the system. Note:\nThe debugfs file system must be mounted locally to exploit this issue.\nIt is not mounted by default. (CVE-2013-6378, Low)\n\n* A NULL pointer dereference flaw was found in the Linux kernel's IPv6\nsource address-based routing implementation. A local attacker who has the\nCAP_NET_ADMIN capability could use this flaw to crash the system.\n(CVE-2013-6431, Low)\n\nRed Hat would like to thank Hannes Frederic Sowa for reporting\nCVE-2013-4470. The CVE-2013-4270 issue was discovered by Miroslav Vadkerti\nof Red Hat.\n\nThis update also fixes multiple bugs. Documentation for these changes will\nbe available shortly from the Technical Notes document linked to in the\nReferences section.\n\nUsers should upgrade to these updated packages, which upgrade the kernel-rt\nkernel to version kernel-rt-3.8.13-rt27, correct these issues, and fix the\nbugs noted in the Red Hat Enterprise MRG 2 Technical Notes. The system must\nbe rebooted for this update to take effect.\n", "modified": "2018-06-07T08:58:27", "published": "2014-01-28T05:00:00", "id": "RHSA-2014:0100", "href": "https://access.redhat.com/errata/RHSA-2014:0100", "type": "redhat", "title": "(RHSA-2014:0100) Important: kernel-rt security and bug fix update", "cvss": {"score": 6.9, "vector": "AV:L/AC:M/Au:N/C:C/I:C/A:C"}}]}
