Lucene search
Copyright (C) 2008 Greenbone AGOPENVAS:136141256231062957HistoryDec 23, 2008 - 12:00 a.m.
Debian: Security Advisory (DSA-1687-1)
2008-12-2300:00:00
Copyright (C) 2008 Greenbone AG
plugins.openvas.org
1
6.1 Medium
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.089 Low
EPSS
Percentile
94.5%
The remote host is missing an update for the Debian
# SPDX-FileCopyrightText: 2008 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.62957");
script_cve_id("CVE-2008-3527", "CVE-2008-3528", "CVE-2008-4554", "CVE-2008-4576", "CVE-2008-4933", "CVE-2008-4934", "CVE-2008-5025", "CVE-2008-5029", "CVE-2008-5079", "CVE-2008-5182", "CVE-2008-5300");
script_tag(name:"creation_date", value:"2008-12-23 17:28:16 +0000 (Tue, 23 Dec 2008)");
script_version("2024-02-01T14:37:10+0000");
script_tag(name:"last_modification", value:"2024-02-01 14:37:10 +0000 (Thu, 01 Feb 2024)");
script_tag(name:"cvss_base", value:"7.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_name("Debian: Security Advisory (DSA-1687-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2008 Greenbone AG");
script_family("Debian Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB4");
script_xref(name:"Advisory-ID", value:"DSA-1687-1");
script_xref(name:"URL", value:"https://www.debian.org/security/2008/DSA-1687-1");
script_xref(name:"URL", value:"https://security-tracker.debian.org/tracker/DSA-1687");
script_tag(name:"summary", value:"The remote host is missing an update for the Debian 'fai-kernels, linux-2.6, user-mode-linux' package(s) announced via the DSA-1687-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems:
CVE-2008-3527
Tavis Ormandy reported a local DoS and potential privilege escalation in the Virtual Dynamic Shared Objects (vDSO) implementation.
CVE-2008-3528
Eugene Teo reported a local DoS issue in the ext2 and ext3 filesystems. Local users who have been granted the privileges necessary to mount a filesystem would be able to craft a corrupted filesystem that causes the kernel to output error messages in an infinite loop.
CVE-2008-4554
Milos Szeredi reported that the usage of splice() on files opened with O_APPEND allows users to write to the file at arbitrary offsets, enabling a bypass of possible assumed semantics of the O_APPEND flag.
CVE-2008-4576
Vlad Yasevich reported an issue in the SCTP subsystem that may allow remote users to cause a local DoS by triggering a kernel oops.
CVE-2008-4933
Eric Sesterhenn reported a local DoS issue in the hfsplus filesystem. Local users who have been granted the privileges necessary to mount a filesystem would be able to craft a corrupted filesystem that causes the kernel to overrun a buffer, resulting in a system oops or memory corruption.
CVE-2008-4934
Eric Sesterhenn reported a local DoS issue in the hfsplus filesystem. Local users who have been granted the privileges necessary to mount a filesystem would be able to craft a corrupted filesystem that results in a kernel oops due to an unchecked return value.
CVE-2008-5025
Eric Sesterhenn reported a local DoS issue in the hfs filesystem. Local users who have been granted the privileges necessary to mount a filesystem would be able to craft a filesystem with a corrupted catalog name length, resulting in a system oops or memory corruption.
CVE-2008-5029
Andrea Bittau reported a DoS issue in the unix socket subsystem that allows a local user to cause memory corruption, resulting in a kernel panic.
CVE-2008-5079
Hugo Dias reported a DoS condition in the ATM subsystem that can be triggered by a local user by calling the svc_listen function twice on the same socket and reading /proc/net/atm/*vc.
CVE-2008-5182
Al Viro reported race conditions in the inotify subsystem that may allow local users to acquire elevated privileges.
CVE-2008-5300
Dann Frazier reported a DoS condition that allows local users to cause the out of memory handler to kill off privileged processes or trigger soft lockups due to a starvation issue in the unix socket subsystem.
For the stable distribution (etch), this problem has been fixed in version 2.6.18.dfsg.1-23etch1.
We recommend that you upgrade your linux-2.6, fai-kernels, and user-mode-linux packages.
Note: Debian 'etch' includes linux kernel packages based upon both the 2.6.18 and 2.6.24 linux releases. All known security issues ... [Please see the references for more information on the vulnerabilities]");
script_tag(name:"affected", value:"'fai-kernels, linux-2.6, user-mode-linux' package(s) on Debian 4.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "DEB4") {
if(!isnull(res = isdpkgvuln(pkg:"fai-kernels", ver:"1.17+etch.23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-doc-2.6.18", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-486", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-686-bigmem", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-alpha", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-arm", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-hppa", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-i386", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-ia64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-mips", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-mipsel", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-powerpc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-s390", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-all-sparc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-alpha-generic", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-alpha-legacy", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-alpha-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-footbridge", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-iop32x", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-itanium", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-ixp4xx", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-k7", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-mckinley", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-parisc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-parisc-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-parisc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-parisc64-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-powerpc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-powerpc-miboot", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-powerpc-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-powerpc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-prep", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-qemu", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-r3k-kn02", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-r4k-ip22", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-r4k-kn04", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-r5k-cobalt", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-r5k-ip32", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-rpc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-s390", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-s390x", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-s3c2410", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-sb1-bcm91250a", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-sb1a-bcm91480b", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-sparc32", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-sparc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-sparc64-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver-alpha", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver-k7", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver-powerpc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver-powerpc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver-s390x", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-vserver-sparc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-xen", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-xen-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-xen-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-xen-vserver", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-xen-vserver-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.18-6-xen-vserver-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-486", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-686-bigmem", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-alpha-generic", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-alpha-legacy", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-alpha-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-footbridge", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-iop32x", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-itanium", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-ixp4xx", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-k7", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-mckinley", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-parisc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-parisc-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-parisc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-parisc64-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-powerpc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-powerpc-miboot", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-powerpc-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-powerpc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-prep", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-qemu", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-r3k-kn02", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-r4k-ip22", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-r4k-kn04", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-r5k-cobalt", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-r5k-ip32", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-rpc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-s390", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-s390-tape", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-s390x", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-s3c2410", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-sb1-bcm91250a", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-sb1a-bcm91480b", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-sparc32", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-sparc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-sparc64-smp", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-vserver-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-vserver-alpha", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-vserver-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-vserver-k7", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-vserver-powerpc", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-vserver-powerpc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-vserver-s390x", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-vserver-sparc64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-xen-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-xen-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-xen-vserver-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.18-6-xen-vserver-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-manual-2.6.18", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-modules-2.6.18-6-xen-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-modules-2.6.18-6-xen-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-modules-2.6.18-6-xen-vserver-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-modules-2.6.18-6-xen-vserver-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-patch-debian-2.6.18", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-source-2.6.18", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-support-2.6.18-6", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-tree-2.6.18", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"user-mode-linux", ver:"2.6.18-1um-2etch.23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"xen-linux-system-2.6.18-6-xen-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"xen-linux-system-2.6.18-6-xen-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"xen-linux-system-2.6.18-6-xen-vserver-686", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"xen-linux-system-2.6.18-6-xen-vserver-amd64", ver:"2.6.18.dfsg.1-23etch1", rls:"DEB4"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
osv
osv
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2008-12-15 00:00:00
linux-2.6.24 - several vulnerabilities
2008-12-04 00:00:00
nessus
nessus
Debian DSA-1687-1 : linux-2.6 - denial of service/privilege escalation
2008-12-16 00:00:00
Debian DSA-1681-1 : linux-2.6.24 - denial of service/privilege escalation
2008-12-05 00:00:00
SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 5924)
2009-09-24 00:00:00
openvas
openvas
Debian Security Advisory DSA 1687-1 (linux-2.6)
2008-12-23 00:00:00
Debian: Security Advisory (DSA-1681-1)
2008-12-10 00:00:00
Debian Security Advisory DSA 1681-1 (linux-2.6.24)
2008-12-10 00:00:00
debian
debian
suse
suse
local privilege escalation in kernel
2009-01-29 16:12:11
local privilege escalation in kernel
2009-01-21 20:06:24
local privilege escalation in kernel-debug
2009-01-20 17:01:02
redhat
redhat
(RHSA-2009:0021) Important: kernel security update
2009-02-24 00:00:00
(RHSA-2009:0225) Important: Red Hat Enterprise Linux 5.3 kernel security and bug fix update
2009-01-20 00:00:00
(RHSA-2009:0014) Important: kernel security and bug fix update
2009-01-14 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-11-24 00:00:00
Linux kernel multiple security vulnerabilities
2008-12-29 00:00:00
[ MDVSA-2008:234 ] kernel
2008-11-24 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: kernel-2.6.27.9-159.fc10
2008-12-24 18:45:37
[SECURITY] Fedora 9 Update: kernel-2.6.27.9-73.fc9
2008-12-24 18:47:55
[SECURITY] Fedora 9 Update: kernel-2.6.26.6-79.fc9
2008-10-23 16:39:28
oraclelinux
oraclelinux
kernel security and bug fix update
2009-01-15 00:00:00
kernel security update
2009-02-11 00:00:00
Oracle Enterprise Linux 5.3 kernel security and bug fix update
2009-01-27 00:00:00
centos
centos
kernel security update
2009-01-15 13:41:46
kernel security update
2008-12-17 00:06:25
kernel security update
2009-11-04 00:55:32
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-11-27 00:00:00
Linux kernel vulnerabilities
2009-01-29 00:00:00
Linux kernel vulnerabilities
2009-01-29 00:00:00
prion
prion
Stack overflow
2008-11-17 23:30:00
Design/Logic Flaw
2008-12-01 17:30:00
Race condition
2008-11-21 02:30:00
ubuntucve
ubuntucve
cve
cve
veracode
veracode
Privilege Escalation
2020-04-10 00:29:30
Privilege Escalation
2020-04-10 00:28:03
Denial Of Service (DoS)
2020-04-10 00:30:53
seebug
seebug
Linux Kernel hfs_cat_find_brec()本地拒绝服务漏洞
2008-11-17 00:00:00
Linux Kernel VDSO本地权限提升漏洞
2008-11-17 00:00:00
Linux Kernel VDSO未明特权提升漏洞
2008-11-06 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.27.8 - ATMSVC Local Denial of Service
2008-12-10 00:00:00
exploitdb
exploitdb
Linux Kernel 2.6.27.8 - ATMSVC Local Denial of Service
2008-12-10 00:00:00
6.1 Medium
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.089 Low
EPSS
Percentile
94.5%
Related for OPENVAS:136141256231062957