Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2015-2021 Canonical, Inc. / NASL script (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-2511-1.NASL
HistoryFeb 27, 2015 - 12:00 a.m.

Ubuntu 10.04 LTS : linux vulnerabilities (USN-2511-1)

2015-02-2700:00:00
Ubuntu Security Notice (C) 2015-2021 Canonical, Inc. / NASL script (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
22
JSON

A race condition was discovered in the Linux kernelโ€™s key ring. A local user could cause a denial of service (memory corruption or panic) or possibly have unspecified impact via the keyctl commands.
(CVE-2014-9529)

A memory leak was discovered in the ISO 9660 CDROM file system when parsing rock ridge ER records. A local user could exploit this flaw to obtain sensitive information from kernel memory via a crafted iso9660 image. (CVE-2014-9584).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2511-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(81565);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2014-9529", "CVE-2014-9584");
  script_bugtraq_id(71880, 71883);
  script_xref(name:"USN", value:"2511-1");

  script_name(english:"Ubuntu 10.04 LTS : linux vulnerabilities (USN-2511-1)");
  script_summary(english:"Checks dpkg output for updated packages.");

  script_set_attribute(
    attribute:"synopsis",
    value:
"The remote Ubuntu host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description",
    value:
"A race condition was discovered in the Linux kernel's key ring. A
local user could cause a denial of service (memory corruption or
panic) or possibly have unspecified impact via the keyctl commands.
(CVE-2014-9529)

A memory leak was discovered in the ISO 9660 CDROM file system when
parsing rock ridge ER records. A local user could exploit this flaw to
obtain sensitive information from kernel memory via a crafted iso9660
image. (CVE-2014-9584).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/2511-1/"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.04:-:lts");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/01/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/02/26");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/02/27");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2015-2021 Canonical, Inc. / NASL script (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("ksplice.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(10\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 10.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

if (get_one_kb_item("Host/ksplice/kernel-cves"))
{
  rm_kb_item(name:"Host/uptrack-uname-r");
  cve_list = make_list("CVE-2014-9529", "CVE-2014-9584");
  if (ksplice_cves_check(cve_list))
  {
    audit(AUDIT_PATCH_INSTALLED, "KSplice hotfix for USN-2511-1");
  }
  else
  {
    _ubuntu_report = ksplice_reporting_text();
  }
}

flag = 0;

if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-73-386", pkgver:"2.6.32-73.140")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-73-generic", pkgver:"2.6.32-73.140")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-73-generic-pae", pkgver:"2.6.32-73.140")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-73-lpia", pkgver:"2.6.32-73.140")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-73-preempt", pkgver:"2.6.32-73.140")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-73-server", pkgver:"2.6.32-73.140")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-73-versatile", pkgver:"2.6.32-73.140")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-73-virtual", pkgver:"2.6.32-73.140")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux-image-2.6-386 / linux-image-2.6-generic / etc");
}
VendorProductVersionCPE
canonicalubuntu_linuxlinux-image-2.6-386p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386
canonicalubuntu_linuxlinux-image-2.6-genericp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic
canonicalubuntu_linuxlinux-image-2.6-generic-paep-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae
canonicalubuntu_linuxlinux-image-2.6-lpiap-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia
canonicalubuntu_linuxlinux-image-2.6-preemptp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt
canonicalubuntu_linuxlinux-image-2.6-serverp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server
canonicalubuntu_linuxlinux-image-2.6-versatilep-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile
canonicalubuntu_linuxlinux-image-2.6-virtualp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual
canonicalubuntu_linux10.04cpe:/o:canonical:ubuntu_linux:10.04:-:lts

Related

nessus 50
ubuntu 11
openvas 52
securityvulns 4
oraclelinux 7
osv 2
ubuntucve 2
prion 2
f5 4
android 1
cve 2
debian 3
debiancve 2
veracode 5
redhat 4
centos 2
mageia 5
suse 12
fedora 19
androidsecurity 1
lenovo 1
nessus
nessus
Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-2512-1)
2015-02-27 00:00:00
OracleVM 3.3 : kernel-uek (OVMSA-2015-0056)
2015-04-28 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2015-3032)
2015-04-24 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2015-02-26 00:00:00
Linux kernel (EC2) vulnerabilities
2015-02-26 00:00:00
Linux kernel (OMAP4) vulnerabilities
2015-02-26 00:00:00
openvas
openvas
Ubuntu Update for linux-ec2 USN-2512-1
2015-02-27 00:00:00
Ubuntu Update for linux USN-2511-1
2015-02-27 00:00:00
Oracle Linux Local Check: ELSA-2015-3032
2015-10-06 00:00:00
securityvulns
securityvulns
[USN-2511-1] Linux kernel vulnerabilities
2015-03-07 00:00:00
[ MDVSA-2015:027 ] kernel
2015-01-18 00:00:00
Linux kernel multiple security vulnerabilities
2015-01-18 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-04-23 00:00:00
Unbreakable Enterprise kernel security and bugfix update
2015-05-13 00:00:00
Unbreakable Enterprise kernel security update
2015-04-23 00:00:00
osv
osv
linux - security update
2015-01-15 00:00:00
linux-2.6 - security update
2015-02-18 00:00:00
ubuntucve
ubuntucve
CVE-2014-9584
2015-01-09 00:00:00
CVE-2014-9529
2015-01-09 00:00:00
prion
prion
Race condition
2015-01-09 21:59:00
Code injection
2015-01-09 21:59:00
f5
f5
K17239 : Linux kernel vulnerability CVE-2014-9529
2015-09-08 00:00:00
SOL17239 - Linux kernel vulnerability CVE-2014-9529
2015-09-08 00:00:00
SOL17245 - Linux kernel vulnerability CVE-2014-9584
2015-09-08 00:00:00
android
android
CVE-2014-9529
2016-09-01 00:00:00
cve
cve
CVE-2014-9529
2015-01-09 21:59:00
CVE-2014-9584
2015-01-09 21:59:00
debian
debian
[SECURITY] [DSA 3128-1] linux security update
2015-01-15 06:41:29
[SECURITY] [DSA 3128-1] linux security update
2015-01-15 06:41:29
[SECURITY] [DLA 155-1] linux-2.6 security update
2015-02-18 23:22:13
debiancve
debiancve
CVE-2014-9529
2015-01-09 21:59:00
CVE-2014-9584
2015-01-09 21:59:00
veracode
veracode
ASLR Bypass
2019-05-02 05:39:40
Sensitive Information Leakage
2019-05-02 05:39:40
Denial Of Service (DoS)
2019-05-02 05:39:40
redhat
redhat
(RHSA-2015:1138) Important: kernel-rt security, bug fix, and enhancement update
2015-06-23 00:00:00
(RHSA-2015:1139) Important: kernel-rt security, bug fix, and enhancement update
2015-05-20 10:22:57
(RHSA-2015:1137) Important: kernel security and bug fix update
2015-06-23 00:00:00
centos
centos
kernel, perf, python security update
2015-06-24 03:36:55
kernel, perf, python security update
2015-04-22 09:51:52
mageia
mageia
Updated kernel packages fix security vulnerabilities
2015-02-17 21:38:13
Updated kernel-linus packages fix security vulnerabilities
2015-02-19 17:43:07
Updated kernel-vserver packages fix security vulnerabilities
2015-02-19 17:43:07
suse
suse
Security update for the Linux Kernel (important)
2015-04-13 14:17:21
Security update for Linux Kernel (important)
2015-04-13 14:04:48
Security update for the Linux Kernel (important)
2015-03-18 22:04:55
fedora
fedora
[SECURITY] Fedora 21 Update: kernel-3.18.3-201.fc21
2015-01-26 02:31:22
[SECURITY] Fedora 21 Update: kernel-3.17.8-300.fc21
2015-01-11 02:58:06
[SECURITY] Fedora 21 Update: kernel-3.18.5-201.fc21
2015-02-06 04:00:35
androidsecurity
androidsecurity
Android Security Bulletinโ€”September 2016
2016-09-06 00:00:00
lenovo
lenovo
AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US
2020-04-13 19:22:04
JSON
Related for UBUNTU_USN-2511-1.NASL
nessus50ubuntu11openvas52securityvulns4oraclelinux7osv2ubuntucve2prion2f54android1cve2debian3debiancve2veracode5redhat4centos2mageia5suse12fedora19androidsecurity1lenovo1