Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.VIRTUOZZO_VZA-2020-015.NASLHistoryFeb 24, 2020 - 12:00 a.m.
Virtuozzo 7 : readykernel-patch (VZA-2020-015)
2020-02-2400:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21
7.2 High
AI Score
Confidence
Low
According to the version of the vzkernel package and the readykernel-patch installed, the Virtuozzo installation on the remote host is affected by the following vulnerability :
- [3.10.0-862.9.1.vz7.63.3 to 3.10.0-1062.4.2.vz7.116.7] xfs: potential denial of service caused by missing unlock operation in xfs_setattr_nonsize(). It was discovered that xfs_setattr_nonsize() would not unlock ‘ILOCK’ lock if the user or group were out of their disk quota. As a result, any subsequent operation, which needed to take ‘ILOCK’, would get stuck, leading to a denial of service.
Note that Tenable Network Security has extracted the preceding description block directly from the Virtuozzo security advisory.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(133952);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/26");
script_cve_id("CVE-2019-15538");
script_name(english:"Virtuozzo 7 : readykernel-patch (VZA-2020-015)");
script_set_attribute(attribute:"synopsis", value:
"The remote Virtuozzo host is missing a security update.");
script_set_attribute(attribute:"description", value:
"According to the version of the vzkernel package and the
readykernel-patch installed, the Virtuozzo installation on the remote
host is affected by the following vulnerability :
- [3.10.0-862.9.1.vz7.63.3 to 3.10.0-1062.4.2.vz7.116.7]
xfs: potential denial of service caused by missing
unlock operation in xfs_setattr_nonsize(). It was
discovered that xfs_setattr_nonsize() would not unlock
'ILOCK' lock if the user or group were out of their
disk quota. As a result, any subsequent operation,
which needed to take 'ILOCK', would get stuck, leading
to a denial of service.
Note that Tenable Network Security has extracted the preceding
description block directly from the Virtuozzo security advisory.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://virtuozzosupport.force.com/s/article/VZA-2020-015");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2019-15538");
# https://readykernel.com/patch/Virtuozzo-7/readykernel-patch-116.7-98.0-1.vl7/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?859747e7");
# https://readykernel.com/patch/Virtuozzo-7/readykernel-patch-63.3-98.0-1.vl7/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?14581295");
# https://readykernel.com/patch/Virtuozzo-7/readykernel-patch-64.7-98.0-1.vl7/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6e5a0ac5");
# https://readykernel.com/patch/Virtuozzo-7/readykernel-patch-73.24-98.0-1.vl7/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1ca60cde");
# https://readykernel.com/patch/Virtuozzo-7/readykernel-patch-73.29-98.0-1.vl7/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?0e6efe3d");
# https://readykernel.com/patch/Virtuozzo-7/readykernel-patch-85.17-98.0-1.vl7/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e2ad6828");
# https://readykernel.com/patch/Virtuozzo-7/readykernel-patch-86.2-98.0-1.vl7/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?060c2d8c");
# https://readykernel.com/patch/Virtuozzo-7/readykernel-patch-96.21-98.0-1.vl7/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?94b61465");
script_set_attribute(attribute:"solution", value:
"Update the readykernel patch.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-15538");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"patch_publication_date", value:"2020/02/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/02/24");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:readykernel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:virtuozzo:virtuozzo:7");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Virtuozzo Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Virtuozzo/release", "Host/Virtuozzo/rpm-list", "Host/readykernel-info");
exit(0);
}
include("global_settings.inc");
include("readykernel.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Virtuozzo/release");
if (isnull(release) || "Virtuozzo" >!< release) audit(AUDIT_OS_NOT, "Virtuozzo");
os_ver = pregmatch(pattern: "Virtuozzo Linux release ([0-9]+\.[0-9])(\D|$)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Virtuozzo");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Virtuozzo 7.x", "Virtuozzo " + os_ver);
if (!get_kb_item("Host/Virtuozzo/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Virtuozzo", cpu);
rk_info = get_kb_item("Host/readykernel-info");
if (empty_or_null(rk_info)) audit(AUDIT_UNKNOWN_APP_VER, "Virtuozzo");
checks = make_list2(
make_array(
"kernel","vzkernel-3.10.0-862.9.1.vz7.63.3",
"patch","readykernel-patch-116.7-98.0-1.vl7"
),
make_array(
"kernel","vzkernel-3.10.0-862.11.6.vz7.64.7",
"patch","readykernel-patch-63.3-98.0-1.vl7"
),
make_array(
"kernel","vzkernel-3.10.0-862.20.2.vz7.73.24",
"patch","readykernel-patch-64.7-98.0-1.vl7"
),
make_array(
"kernel","vzkernel-3.10.0-862.20.2.vz7.73.29",
"patch","readykernel-patch-73.24-98.0-1.vl7"
),
make_array(
"kernel","vzkernel-3.10.0-957.10.1.vz7.85.17",
"patch","readykernel-patch-73.29-98.0-1.vl7"
),
make_array(
"kernel","vzkernel-3.10.0-957.12.2.vz7.86.2",
"patch","readykernel-patch-85.17-98.0-1.vl7"
),
make_array(
"kernel","vzkernel-3.10.0-957.12.2.vz7.96.21",
"patch","readykernel-patch-86.2-98.0-1.vl7"
),
make_array(
"kernel","vzkernel-3.10.0-1062.4.2.vz7.116.7",
"patch","readykernel-patch-96.21-98.0-1.vl7"
)
);
readykernel_execute_checks(checks:checks, severity:SECURITY_HOLE, release:"Virtuozzo-7");
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15538
www.nessus.org/u?060c2d8c
www.nessus.org/u?0e6efe3d
www.nessus.org/u?14581295
www.nessus.org/u?1ca60cde
www.nessus.org/u?6e5a0ac5
www.nessus.org/u?859747e7
www.nessus.org/u?94b61465
www.nessus.org/u?e2ad6828
access.redhat.com/security/cve/cve-2019-15538
virtuozzosupport.force.com/s/article/VZA-2020-015
Related
redhatcve
redhatcve
CVE-2019-15538
2019-08-29 09:28:31
f5
f5
K32592426 : Linux kernel vulnerability CVE-2019-15538
2019-10-14 00:00:00
prion
prion
Design/Logic Flaw
2019-08-25 16:15:00
cve
cve
CVE-2019-15538
2019-08-25 16:15:00
virtuozzo
virtuozzo
nessus
nessus
Photon OS 3.0: Linux PHSA-2019-3.0-0028
2019-10-07 00:00:00
Amazon Linux AMI : kernel (ALAS-2019-1281)
2019-09-19 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4144-1)
2019-10-01 00:00:00
osv
osv
CVE-2019-15538
2019-08-25 16:15:11
linux-4.9 - security update
2019-09-12 00:00:00
ubuntucve
ubuntucve
CVE-2019-15538
2019-08-25 00:00:00
debiancve
debiancve
CVE-2019-15538
2019-08-25 16:15:00
openvas
openvas
Ubuntu Update for linux USN-4144-1
2019-10-02 00:00:00
Fedora Update for kernel-headers FEDORA-2019-4c91a2f76e
2019-09-05 00:00:00
Fedora Update for kernel-headers FEDORA-2019-97380355ae
2019-09-05 00:00:00
cloudfoundry
cloudfoundry
USN-4144-1: Linux kernel vulnerabilities | Cloud Foundry
2019-11-06 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2019-10-01 00:00:00
Linux kernel vulnerabilities
2019-10-04 00:00:00
amazon
amazon
Medium: kernel
2019-09-13 22:48:00
photon
photon
Critical Photon OS Security Update - PHSA-2019-0028
2019-09-06 00:00:00
Critical Photon OS Security Update - PHSA-2019-3.0-0028
2019-09-06 00:00:00
Critical Photon OS Security Update - PHSA-2019-0178
2019-09-23 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: kernel-tools-5.2.11-100.fc29
2019-09-04 04:07:40
[SECURITY] Fedora 30 Update: kernel-headers-5.2.11-200.fc30
2019-09-04 03:14:04
[SECURITY] Fedora 29 Update: kernel-headers-5.2.11-100.fc29
2019-09-04 04:07:40
redhat
redhat
(RHSA-2020:2104) Important: kernel-alt security and bug fix update
2020-05-12 12:52:19
debian
debian
[SECURITY] [DLA 1919-2] linux-4.9 security update
2019-09-15 17:51:06
[SECURITY] [DLA 1919-1] linux-4.9 security update
2019-09-14 00:21:38
ibm
ibm
suse
suse
Security update for the Linux Kernel (important)
2019-09-24 00:00:00
Security update for the Linux Kernel (important)
2019-09-25 00:00:00