Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2022-2024 Canonical, Inc. / NASL script (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-5418-1.NASL
HistoryMay 12, 2022 - 12:00 a.m.

Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5418-1)

2022-05-1200:00:00
Ubuntu Security Notice (C) 2022-2024 Canonical, Inc. / NASL script (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
50

7.9 High

AI Score

Confidence

High

JSON

The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5418-1 advisory.

  • LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
    (CVE-2021-26401)

  • Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV device frontends are using the grant table interfaces for removing access rights of the backends in ways being subject to race conditions, resulting in potential data leaks, data corruption by malicious backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they assume that a following removal of the granted access will always succeed, which is not true in case the backend has mapped the granted page between those two operations. As a result the backend can keep access to the memory page of the guest no matter how the page will be used after the frontend I/O has finished.
    The xenbus driver has a similar problem, as it doesn’t check the success of removing the granted access of a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038 gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus, 9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no longer in use, but the freeing of the related data page is not synchronized with dropping the granted access. As a result the backend can keep access to the memory page even after it has been freed and then re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which can be triggered by the backend. CVE-2022-23042 (CVE-2022-23036, CVE-2022-23037, CVE-2022-23038, CVE-2022-23039, CVE-2022-23040, CVE-2022-23042)

  • drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
    (CVE-2022-24958)

  • An issue was discovered in drivers/usb/gadget/composite.c in the Linux kernel before 5.16.10. The USB Gadget subsystem lacks certain validation of interface OS descriptor requests (ones with a large array index and ones associated with NULL function pointer retrieval). Memory corruption might occur.
    (CVE-2022-25258)

  • An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory. (CVE-2022-25375)

  • st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters. (CVE-2022-26490)

  • An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device. (CVE-2022-26966)

  • In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access. (CVE-2022-27223)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-5418-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(161060);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/09");

  script_cve_id(
    "CVE-2021-26401",
    "CVE-2022-23036",
    "CVE-2022-23037",
    "CVE-2022-23038",
    "CVE-2022-23039",
    "CVE-2022-23040",
    "CVE-2022-23042",
    "CVE-2022-24958",
    "CVE-2022-25258",
    "CVE-2022-25375",
    "CVE-2022-26490",
    "CVE-2022-26966",
    "CVE-2022-27223"
  );
  script_xref(name:"USN", value:"5418-1");

  script_name(english:"Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5418-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as
referenced in the USN-5418-1 advisory.

  - LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
    (CVE-2021-26401)

  - Linux PV device frontends vulnerable to attacks by backends T[his CNA information record relates to
    multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Several Linux PV
    device frontends are using the grant table interfaces for removing access rights of the backends in ways
    being subject to race conditions, resulting in potential data leaks, data corruption by malicious
    backends, and denial of service triggered by malicious backends: blkfront, netfront, scsifront and the
    gntalloc driver are testing whether a grant reference is still in use. If this is not the case, they
    assume that a following removal of the granted access will always succeed, which is not true in case the
    backend has mapped the granted page between those two operations. As a result the backend can keep access
    to the memory page of the guest no matter how the page will be used after the frontend I/O has finished.
    The xenbus driver has a similar problem, as it doesn't check the success of removing the granted access of
    a shared ring buffer. blkfront: CVE-2022-23036 netfront: CVE-2022-23037 scsifront: CVE-2022-23038
    gntalloc: CVE-2022-23039 xenbus: CVE-2022-23040 blkfront, netfront, scsifront, usbfront, dmabuf, xenbus,
    9p, kbdfront, and pvcalls are using a functionality to delay freeing a grant reference until it is no
    longer in use, but the freeing of the related data page is not synchronized with dropping the granted
    access. As a result the backend can keep access to the memory page even after it has been freed and then
    re-used for a different purpose. CVE-2022-23041 netfront will fail a BUG_ON() assertion if it fails to
    revoke access in the rx path. This will result in a Denial of Service (DoS) situation of the guest which
    can be triggered by the backend. CVE-2022-23042 (CVE-2022-23036, CVE-2022-23037, CVE-2022-23038,
    CVE-2022-23039, CVE-2022-23040, CVE-2022-23042)

  - drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
    (CVE-2022-24958)

  - An issue was discovered in drivers/usb/gadget/composite.c in the Linux kernel before 5.16.10. The USB
    Gadget subsystem lacks certain validation of interface OS descriptor requests (ones with a large array
    index and ones associated with NULL function pointer retrieval). Memory corruption might occur.
    (CVE-2022-25258)

  - An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The
    RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive
    information from kernel memory. (CVE-2022-25375)

  - st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has
    EVT_TRANSACTION buffer overflows because of untrusted length parameters. (CVE-2022-26490)

  - An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to
    obtain sensitive information from heap memory via crafted frame lengths from a device. (CVE-2022-26966)

  - In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not
    validated and might be manipulated by the host for out-of-array access. (CVE-2022-27223)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-5418-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected kernel package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-27223");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/02/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/05/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/05/12");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:esm");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1042-dell300x");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1093-oracle");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1114-kvm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1122-gcp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1127-snapdragon");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1128-aws");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1128-aws-hwe");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1138-azure");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-177-generic");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-177-generic-lpae");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-177-lowlatency");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2022-2024 Canonical, Inc. / NASL script (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("linux_alt_patch_detect.nasl", "ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');
include('ksplice.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('16.04' >< os_release || '18.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04 / 18.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var kernel_mappings = {
  '16.04': {
    '4.15.0': {
      'generic': '4.15.0-177',
      'lowlatency': '4.15.0-177',
      'oracle': '4.15.0-1093',
      'gcp': '4.15.0-1122',
      'aws': '4.15.0-1128',
      'aws-hwe': '4.15.0-1128',
      'azure': '4.15.0-1138'
    }
  },
  '18.04': {
    '4.15.0': {
      'generic': '4.15.0-177',
      'generic-lpae': '4.15.0-177',
      'lowlatency': '4.15.0-177',
      'dell300x': '4.15.0-1042',
      'oracle': '4.15.0-1093',
      'kvm': '4.15.0-1114',
      'gcp': '4.15.0-1122',
      'snapdragon': '4.15.0-1127',
      'aws': '4.15.0-1128',
      'azure': '4.15.0-1138'
    }
  }
};

var host_kernel_release = get_kb_item('Host/uptrack-uname-r');
if (empty_or_null(host_kernel_release)) host_kernel_release = get_kb_item_or_exit('Host/uname-r');
var host_kernel_base_version = get_kb_item_or_exit('Host/Debian/kernel-base-version');
var host_kernel_type = get_kb_item_or_exit('Host/Debian/kernel-type');
if(empty_or_null(kernel_mappings[os_release][host_kernel_base_version][host_kernel_type])) audit(AUDIT_INST_VER_NOT_VULN, 'kernel ' + host_kernel_release);

var extra = '';
var kernel_fixed_version = kernel_mappings[os_release][host_kernel_base_version][host_kernel_type] + "-" + host_kernel_type;
if (deb_ver_cmp(ver1:host_kernel_release, ver2:kernel_fixed_version) < 0)
{
  extra = extra + 'Running Kernel level of ' + host_kernel_release + ' does not meet the minimum fixed level of ' + kernel_fixed_version + ' for this advisory.\n\n';
}
  else
{
  audit(AUDIT_PATCH_INSTALLED, 'Kernel package for USN-5418-1');
}

if (get_one_kb_item('Host/ksplice/kernel-cves'))
{
  var cve_list = make_list('CVE-2021-26401', 'CVE-2022-23036', 'CVE-2022-23037', 'CVE-2022-23038', 'CVE-2022-23039', 'CVE-2022-23040', 'CVE-2022-23042', 'CVE-2022-24958', 'CVE-2022-25258', 'CVE-2022-25375', 'CVE-2022-26490', 'CVE-2022-26966', 'CVE-2022-27223');
  if (ksplice_cves_check(cve_list))
  {
    audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for USN-5418-1');
  }
  else
  {
    extra = extra + ksplice_reporting_text();
  }
}
if (extra) {
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : extra
  );
  exit(0);
}
VendorProductVersionCPE
canonicalubuntu_linux16.04cpe:/o:canonical:ubuntu_linux:16.04:-:esm
canonicalubuntu_linux18.04cpe:/o:canonical:ubuntu_linux:18.04:-:lts
canonicalubuntu_linuxlinux-image-4.15.0-1042-dell300xp-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1042-dell300x
canonicalubuntu_linuxlinux-image-4.15.0-1093-oraclep-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1093-oracle
canonicalubuntu_linuxlinux-image-4.15.0-1114-kvmp-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1114-kvm
canonicalubuntu_linuxlinux-image-4.15.0-1122-gcpp-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1122-gcp
canonicalubuntu_linuxlinux-image-4.15.0-1127-snapdragonp-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1127-snapdragon
canonicalubuntu_linuxlinux-image-4.15.0-1128-awsp-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1128-aws
canonicalubuntu_linuxlinux-image-4.15.0-1128-aws-hwep-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1128-aws-hwe
canonicalubuntu_linuxlinux-image-4.15.0-1138-azurep-cpe:/a:canonical:ubuntu_linux:linux-image-4.15.0-1138-azure
Rows per page:
1-10 of 131

Related

openvas 32
ubuntu 6
osv 12
debiancve 13
prion 13
ubuntucve 14
xen 1
cve 12
redhatcve 9
nessus 42
oraclelinux 5
photon 5
mageia 4
suse 3
fedora 2
f5 1
redhat 3
amd 1
centos 1
rosalinux 1
cbl_mariner 9
debian 1
veracode 5
cnvd 4
openvas
openvas
Ubuntu: Security Advisory (USN-5418-1)
2022-05-13 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:1283-1)
2022-04-21 00:00:00
Ubuntu: Security Advisory (USN-5417-1)
2022-05-13 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2022-05-12 00:00:00
Linux kernel vulnerabilities
2022-05-12 00:00:00
Linux kernel vulnerabilities
2022-05-12 00:00:00
osv
osv
linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle, linux-snapdragon vulnerabilities
2022-05-12 01:48:59
linux, linux-aws, linux-aws-5.13, linux-azure, linux-azure-5.13, linux-gcp, linux-gcp-5.13, linux-hwe-5.13, linux-kvm, linux-oracle, linux-raspi vulnerabilities
2022-05-12 01:17:41
linux, linux-aws, linux-azure, linux-azure-5.4, linux-azure-fde, linux-gcp, linux-gcp-5.4, linux-gke, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities
2022-05-12 00:49:09
debiancve
debiancve
CVE-2022-23039
2022-03-10 20:15:00
CVE-2022-23042
2022-03-10 20:15:00
CVE-2022-23036
2022-03-10 20:15:00
prion
prion
Race condition
2022-03-10 20:15:00
Race condition
2022-03-10 20:15:00
Race condition
2022-03-10 20:15:00
ubuntucve
ubuntucve
CVE-2022-23036
2022-03-10 00:00:00
CVE-2022-23042
2022-03-10 00:00:00
CVE-2022-23040
2022-03-10 00:00:00
xen
xen
Linux PV device frontends vulnerable to attacks by backends
2022-03-10 10:54:00
cve
cve
CVE-2022-23037
2022-03-10 20:15:00
CVE-2022-23038
2022-03-10 20:15:00
CVE-2022-23040
2022-03-10 20:15:00
redhatcve
redhatcve
CVE-2022-23038
2022-05-21 00:09:08
CVE-2022-23036
2022-05-20 23:40:38
CVE-2022-23040
2022-05-20 23:02:28
nessus
nessus
SUSE SLES12 Security Update : kernel (SUSE-SU-2022:1283-1)
2022-04-21 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2022:1270-1)
2022-04-21 00:00:00
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2022-9477)
2022-06-14 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2022-06-14 00:00:00
Unbreakable Enterprise kernel security update
2022-06-14 00:00:00
Unbreakable Enterprise kernel security update
2022-06-14 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0183
2022-05-14 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0370
2022-03-10 00:00:00
Critical Photon OS Security Update - PHSA-2022-4.0-0183
2022-05-14 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2022-03-14 19:51:52
Updated kernel-linus packages fix security vulnerabilities
2022-03-14 19:51:52
Updated kernel packages fix security vulnerabilities
2022-03-08 02:10:22
suse
suse
Security update for the Linux Kernel (important)
2022-03-30 00:00:00
Security update for the Linux Kernel (important)
2022-04-19 00:00:00
Security update for the Linux Kernel (important)
2022-04-12 00:00:00
fedora
fedora
[SECURITY] Fedora 35 Update: kernel-5.16.10-200.fc35
2022-02-24 23:09:18
[SECURITY] Fedora 34 Update: kernel-5.16.10-100.fc34
2022-02-24 23:27:15
f5
f5
K000137188 : AMD CPU vulnerability CVE-2021-26401
2023-10-09 00:00:00
redhat
redhat
(RHSA-2023:0187) Moderate: kernel security update
2023-01-17 08:48:58
(RHSA-2023:0400) Important: kernel-rt security and bug fix update
2023-01-24 09:46:52
(RHSA-2023:0399) Important: kernel security and bug fix update
2023-01-24 09:46:52
amd
amd
LFENCE/JMP Mitigation Update for CVE-2017-5715
2022-03-08 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2023-01-30 16:50:20
rosalinux
rosalinux
Advisory ROSA-SA-2023-2097
2023-02-07 10:10:41
cbl_mariner
cbl_mariner
CVE-2022-25258 affecting package kernel 5.10.189.1-1
2022-03-10 23:47:45
CVE-2022-25258 affecting package kernel 5.15.153.1-2
2022-04-09 06:52:47
CVE-2022-24958 affecting package kernel 5.10.189.1-1
2022-03-10 23:47:45
debian
debian
[SECURITY] [DLA 3065-1] linux security update
2022-07-01 11:40:50
veracode
veracode
Out-of-bound Reads
2022-05-14 20:52:59
Information Disclosure
2022-06-23 22:13:13
Denial Of Service (DoS)
2022-05-14 20:53:22
cnvd
cnvd
Linux kernel denial-of-service vulnerability (CNVD-2022-69195)
2022-02-18 00:00:00
Linux kernel has unspecified vulnerabilities (CNVD-2022-21810)
2022-03-18 00:00:00
Linux kernel has unspecified vulnerabilities (CNVD-2022-20170)
2022-03-08 00:00:00

7.9 High

AI Score

Confidence

High

JSON
Related for UBUNTU_USN-5418-1.NASL
openvas32ubuntu6osv12debiancve13prion13ubuntucve14xen1cve12redhatcve9nessus42oraclelinux5photon5mageia4suse3fedora2f51redhat3amd1centos1rosalinux1cbl_mariner9debian1veracode5cnvd4