Lucene search
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.VIRTUOZZO_VZLSA-2017-0892.NASLHistoryJul 13, 2017 - 12:00 a.m.
Virtuozzo 6 : kernel / kernel-abi-whitelists / kernel-debug / etc (VZLSA-2017-0892)
2017-07-1300:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
22
An update for kernel is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es) :
-
A race condition flaw was found in the N_HLDC Linux kernel driver when accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system.
(CVE-2017-2636, Important) -
A flaw was found in the Linux kernel’s implementation of seq_file where a local attacker could manipulate memory in the put() function pointer. This could lead to memory corruption and possible privileged escalation. (CVE-2016-7910, Moderate)
Red Hat would like to thank Alexander Popov for reporting CVE-2017-2636.
Bug Fix(es) :
-
Previously, Chelsio firmware included an incorrectly-formatted firmware bin file. As a consequence, the firmware could not be flashed. This update provides a firmware bin file that is formatted correctly. As a result, Chelsio firmware can now be flashed successfully. (BZ#1433865)
-
When multiple simultaneous processes attempted to read from the /proc/stat file, spinlock overhead was generated on Non-Uniform Memory Access (NUMA) systems. Consequently, a large amount of CPU was consumed. With this update, the underlying source code has been fixed to avoid taking spinlock when the interrupt line does not exist. As a result, the spinlock overhead is now generated less often, and multiple simultaneous processes can now read /proc/stat without consuming a large amount of CPU. (BZ#1428106)
Note that Tenable Network Security has attempted to extract the preceding description block directly from the corresponding Red Hat security advisory. Virtuozzo provides no description for VZLSA advisories. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(101443);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");
script_cve_id(
"CVE-2016-7910",
"CVE-2017-2636"
);
script_name(english:"Virtuozzo 6 : kernel / kernel-abi-whitelists / kernel-debug / etc (VZLSA-2017-0892)");
script_summary(english:"Checks the rpm output for the updated package.");
script_set_attribute(attribute:"synopsis", value:
"The remote Virtuozzo host is missing a security update.");
script_set_attribute(attribute:"description", value:
"An update for kernel is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security
impact of Important. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
Security Fix(es) :
* A race condition flaw was found in the N_HLDC Linux kernel driver
when accessing n_hdlc.tbuf list that can lead to double free. A local,
unprivileged user able to set the HDLC line discipline on the tty
device could use this flaw to increase their privileges on the system.
(CVE-2017-2636, Important)
* A flaw was found in the Linux kernel's implementation of seq_file
where a local attacker could manipulate memory in the put() function
pointer. This could lead to memory corruption and possible privileged
escalation. (CVE-2016-7910, Moderate)
Red Hat would like to thank Alexander Popov for reporting
CVE-2017-2636.
Bug Fix(es) :
* Previously, Chelsio firmware included an incorrectly-formatted
firmware bin file. As a consequence, the firmware could not be
flashed. This update provides a firmware bin file that is formatted
correctly. As a result, Chelsio firmware can now be flashed
successfully. (BZ#1433865)
* When multiple simultaneous processes attempted to read from the
/proc/stat file, spinlock overhead was generated on Non-Uniform Memory
Access (NUMA) systems. Consequently, a large amount of CPU was
consumed. With this update, the underlying source code has been fixed
to avoid taking spinlock when the interrupt line does not exist. As a
result, the spinlock overhead is now generated less often, and
multiple simultaneous processes can now read /proc/stat without
consuming a large amount of CPU. (BZ#1428106)
Note that Tenable Network Security has attempted to extract the
preceding description block directly from the corresponding Red Hat
security advisory. Virtuozzo provides no description for VZLSA
advisories. Tenable has attempted to automatically clean and format
it as much as possible without introducing additional issues.");
# http://repo.virtuozzo.com/vzlinux/announcements/json/VZLSA-2017-0892.json
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?57610098");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2017-0892");
script_set_attribute(attribute:"solution", value:
"Update the affected kernel / kernel-abi-whitelists / kernel-debug / etc package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"patch_publication_date", value:"2017/04/12");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:kernel-abi-whitelists");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:kernel-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:kernel-firmware");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:virtuozzo:virtuozzo:python-perf");
script_set_attribute(attribute:"cpe", value:"cpe:/o:virtuozzo:virtuozzo:6");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/07/13");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Virtuozzo Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Virtuozzo/release", "Host/Virtuozzo/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Virtuozzo/release");
if (isnull(release) || "Virtuozzo" >!< release) audit(AUDIT_OS_NOT, "Virtuozzo");
os_ver = pregmatch(pattern: "Virtuozzo Linux release ([0-9]+\.[0-9])(\D|$)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Virtuozzo");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Virtuozzo 6.x", "Virtuozzo " + os_ver);
if (!get_kb_item("Host/Virtuozzo/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Virtuozzo", cpu);
flag = 0;
pkgs = ["kernel-2.6.32-696.1.1.vl6",
"kernel-abi-whitelists-2.6.32-696.1.1.vl6",
"kernel-debug-2.6.32-696.1.1.vl6",
"kernel-debug-devel-2.6.32-696.1.1.vl6",
"kernel-devel-2.6.32-696.1.1.vl6",
"kernel-doc-2.6.32-696.1.1.vl6",
"kernel-firmware-2.6.32-696.1.1.vl6",
"kernel-headers-2.6.32-696.1.1.vl6",
"perf-2.6.32-696.1.1.vl6",
"python-perf-2.6.32-696.1.1.vl6"];
foreach (pkg in pkgs)
if (rpm_check(release:"Virtuozzo-6", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-abi-whitelists / kernel-debug / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| virtuozzo | virtuozzo | kernel | p-cpe:/a:virtuozzo:virtuozzo:kernel |
| virtuozzo | virtuozzo | kernel-abi-whitelists | p-cpe:/a:virtuozzo:virtuozzo:kernel-abi-whitelists |
| virtuozzo | virtuozzo | kernel-debug | p-cpe:/a:virtuozzo:virtuozzo:kernel-debug |
| virtuozzo | virtuozzo | kernel-debug-devel | p-cpe:/a:virtuozzo:virtuozzo:kernel-debug-devel |
| virtuozzo | virtuozzo | kernel-devel | p-cpe:/a:virtuozzo:virtuozzo:kernel-devel |
| virtuozzo | virtuozzo | kernel-doc | p-cpe:/a:virtuozzo:virtuozzo:kernel-doc |
| virtuozzo | virtuozzo | kernel-firmware | p-cpe:/a:virtuozzo:virtuozzo:kernel-firmware |
| virtuozzo | virtuozzo | kernel-headers | p-cpe:/a:virtuozzo:virtuozzo:kernel-headers |
| virtuozzo | virtuozzo | perf | p-cpe:/a:virtuozzo:virtuozzo:perf |
| virtuozzo | virtuozzo | python-perf | p-cpe:/a:virtuozzo:virtuozzo:python-perf |
Related
openvas
openvas
CentOS Update for kernel CESA-2017:0892 centos6
2017-04-13 00:00:00
RedHat Update for kernel RHSA-2017:0892-01
2017-04-12 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2017-1066)
2020-01-23 00:00:00
nessus
nessus
CentOS 6 : kernel (CESA-2017:0892)
2017-04-13 00:00:00
Oracle Linux 6 : kernel (ELSA-2017-0892)
2017-04-12 00:00:00
RHEL 6 : kernel (RHSA-2017:0892)
2017-04-13 00:00:00
redhat
redhat
(RHSA-2017:0892) Important: kernel security and bug fix update
2017-04-11 10:30:37
(RHSA-2017:1126) Important: kernel security update
2017-04-25 09:21:16
(RHSA-2017:1233) Important: kernel security update
2017-05-16 09:06:20
centos
centos
kernel, perf, python security update
2017-04-12 12:56:09
kernel, perf, python security update
2017-04-13 11:00:48
kernel, perf, python security update
2017-05-26 02:33:51
oraclelinux
oraclelinux
kernel security and bug fix update
2017-04-11 00:00:00
Unbreakable Enterprise kernel security update
2017-04-13 00:00:00
Unbreakable Enterprise kernel security update
2017-04-13 00:00:00
veracode
veracode
Privilege Escalation
2019-01-15 09:16:43
Denial Of Service (DoS)
2019-01-15 09:17:04
prion
prion
Design/Logic Flaw
2016-11-16 05:59:00
Race condition
2017-03-07 22:59:00
redhatcve
redhatcve
CVE-2016-7910
2016-11-29 15:49:20
CVE-2017-2636
2019-11-03 16:23:08
android
android
CVE-2016-7910
2016-11-01 00:00:00
ubuntucve
ubuntucve
CVE-2016-7910
2016-11-16 00:00:00
CVE-2017-2636
2017-03-07 00:00:00
cve
cve
CVE-2016-7910
2016-11-16 05:59:00
CVE-2017-2636
2017-03-07 22:59:00
debiancve
debiancve
CVE-2016-7910
2016-11-16 05:59:00
CVE-2017-2636
2017-03-07 22:59:00
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerability
2017-03-08 00:00:00
Linux kernel (HWE) vulnerability
2017-03-08 00:00:00
Linux kernel vulnerability
2017-03-07 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2017-04-03 21:09:21
Security update for the Linux Kernel (important)
2017-04-03 21:08:52
Security update for the Linux Kernel (important)
2017-03-30 06:10:44
archlinux
archlinux
[ASA-201703-6] linux-lts: privilege escalation
2017-03-12 00:00:00
[ASA-201703-8] linux: privilege escalation
2017-03-14 00:00:00
[ASA-201703-7] linux-grsec: privilege escalation
2017-03-13 00:00:00
thn
thn
Linux Kernel Gets Patch For Years-Old Serious Vulnerability
2017-03-16 04:54:00
cloudfoundry
cloudfoundry
USN-3220-2: Linux kernel (Xenial HWE) vulnerability | Cloud Foundry
2017-03-09 00:00:00
avleonov
avleonov
Why you can’t update it all at once?
2017-04-22 20:25:16
f5
f5
K18015201 : Linux kernel vulnerability CVE-2017-2636
2017-03-28 00:00:00
ptsecurity
ptsecurity
PT-2017-06: Race Condition in Linux
2017-02-28 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2017-0031
2017-03-28 00:00:00
seebug
seebug
Linux kernel local privilege escalation flaw in n_hdlc(CVE-2017-2636)
2017-03-09 00:00:00
ibm
ibm
Security Bulletin: Multiple packages as used in IBM Security QRadar Packet Capture are vulnerable to various security issues.
2020-10-28 17:16:55
Security Bulletin: IBM QRadar Network Security is affected by vulnerabilities in Linux kernel
2018-06-16 22:02:59
Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM
2018-06-18 01:38:07
mageia
mageia
Updated kernel-tmb packages fixes security vulnerabilities
2017-03-25 23:15:34
Updated kernel packages fixes security vulnerabilities
2017-03-25 23:15:34
Updated kernel-linus packages fixes security vulnerabilities
2017-03-25 23:15:34
debian
debian
[SECURITY] [DLA 849-1] linux security update
2017-03-09 12:06:12
[SECURITY] [DSA 3804-1] linux security update
2017-03-08 16:59:59
[SECURITY] [DSA 3804-1] linux security update
2017-03-08 16:59:59
osv
osv
linux - security update
2017-03-08 00:00:00
linux - security update
2017-03-08 00:00:00
Related for VIRTUOZZO_VZLSA-2017-0892.NASL