Lucene search
Copyright (C) 2009 E-Soft Inc.OPENVAS:136141256231063344HistoryFeb 10, 2009 - 12:00 a.m.
CentOS Security Advisory CESA-2009:0001-01 (kernel)
2009-02-1000:00:00
Copyright (C) 2009 E-Soft Inc.
plugins.openvas.org
15
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6.2 Medium
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.894 High
EPSS
Percentile
98.7%
The remote host is missing updates to kernel announced in
advisory CESA-2009:0001-01.
# SPDX-FileCopyrightText: 2009 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.63344");
script_version("2023-11-02T05:05:26+0000");
script_tag(name:"last_modification", value:"2023-11-02 05:05:26 +0000 (Thu, 02 Nov 2023)");
script_tag(name:"creation_date", value:"2009-02-10 15:52:40 +0100 (Tue, 10 Feb 2009)");
script_cve_id("CVE-2006-4814", "CVE-2007-2172", "CVE-2007-3848", "CVE-2007-4308", "CVE-2007-6063", "CVE-2007-6151", "CVE-2007-6206", "CVE-2008-0007", "CVE-2008-2136", "CVE-2008-3275", "CVE-2008-3525", "CVE-2008-4210");
script_tag(name:"cvss_base", value:"7.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2020-08-14 15:36:00 +0000 (Fri, 14 Aug 2020)");
script_name("CentOS Security Advisory CESA-2009:0001-01 (kernel)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2009 E-Soft Inc.");
script_family("CentOS Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/centos", "ssh/login/rpms", re:"ssh/login/release=CentOS2");
script_tag(name:"insight", value:"For details on the issues addressed in this update,
please visit the referenced security advisories.");
script_tag(name:"solution", value:"Update the appropriate packages on your system.");
script_xref(name:"URL", value:"http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0001-01");
script_xref(name:"URL", value:"http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0001");
script_xref(name:"URL", value:"https://rhn.redhat.com/errata/rh21as-errata.html");
script_tag(name:"summary", value:"The remote host is missing updates to kernel announced in
advisory CESA-2009:0001-01.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
res = "";
report = "";
if ((res = isrpmvuln(pkg:"kernel", rpm:"kernel~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"kernel-BOOT", rpm:"kernel-BOOT~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"kernel-debug", rpm:"kernel-debug~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"kernel-enterprise", rpm:"kernel-enterprise~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"kernel-headers", rpm:"kernel-headers~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"kernel-smp", rpm:"kernel-smp~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"kernel-source", rpm:"kernel-source~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if ((res = isrpmvuln(pkg:"kernel-summit", rpm:"kernel-summit~2.4.9~e.74", rls:"CentOS2")) != NULL) {
report += res;
}
if (report != "") {
security_message(data:report);
} else if (__pkg_match) {
exit(99);
}
Related
openvas
openvas
CentOS Update for kernel CESA-2009:0001-01 centos2 i386
2011-08-09 00:00:00
RedHat Security Advisory RHSA-2009:0001
2009-01-13 00:00:00
CentOS Security Advisory CESA-2009:0001-01 (kernel)
2009-02-10 00:00:00
redhat
redhat
(RHSA-2009:0001) Important: kernel security update
2009-01-08 00:00:00
(RHSA-2008:0787) Important: kernel security update
2009-01-05 00:00:00
(RHSA-2008:0973) Important: kernel security and bug fix update
2008-12-16 00:00:00
nessus
nessus
RHEL 2.1 : kernel (RHSA-2009:0001)
2009-01-09 00:00:00
RHEL 3 : kernel (RHSA-2008:0973)
2008-12-17 00:00:00
CentOS 3 : kernel (CESA-2008:0973)
2008-12-17 00:00:00
centos
centos
kernel security update
2009-02-02 23:36:06
kernel security update
2008-12-17 15:30:17
kernel security update
2008-05-07 14:58:01
suse
suse
remote denial of service in kernel
2008-03-28 14:11:32
local privilege escalation in kernel
2008-02-12 13:43:48
local privilege escalation in kernel
2008-02-07 11:18:53
oraclelinux
oraclelinux
kernel security and bug fix update
2008-12-18 00:00:00
kernel security and bug fix update
2008-05-07 00:00:00
Important: kernel security and bug fix update
2007-12-04 00:00:00
osv
osv
kernelimage-2.4.27 - several issues
2008-02-22 00:00:00
kernel-source-2.4.27 - several vulnerabilities
2008-02-22 00:00:00
kernel-image-2.6.8 - several issues
2008-02-22 00:00:00
debian
debian
[SECURITY] [DSA 1503-1] New Linux kernel 2.4.27 packages fix several issues
2008-02-22 20:55:49
[SECURITY] [DSA 1503-2] New Linux kernel 2.4.27 packages fix several issues
2008-03-06 07:47:54
[SECURITY] [DSA 1504-1] New Linux kernel 2.6.8 packages fix several issues
2008-02-22 21:27:33
vmware
vmware
Updated ESX service console packages for Samba and vmnix
2008-07-28 00:00:00
Updated ESX service console packages for Samba and vmnix
2008-07-28 00:00:00
cve
cve
ubuntucve
ubuntucve
prion
prion
Buffer overflow
2007-11-21 00:46:00
Cross site request forgery (csrf)
2008-09-03 14:12:00
Path traversal
2007-08-13 21:17:00
veracode
veracode
Buffer Overflow
2020-04-10 00:21:38
Privilege Escalation
2020-04-10 00:28:05
Privilege Escalation
2020-04-10 00:21:25
securityvulns
securityvulns
Linux multiple security vulnerabilities
2007-12-21 00:00:00
Linux aacraid driver IOCTL privilege escalation
2007-08-31 00:00:00
seebug
seebug
Linux Kernel ISDN_Net.C本地缓冲区溢出漏洞
2007-12-04 00:00:00
Linux Kernel UBIFS Orphan Inode Local Denial of Service Vulnerability
2008-10-04 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: kernel-2.6.22.4-45.fc6
2007-09-04 21:38:29
[SECURITY] Fedora 7 Update: kernel-2.6.22.4-65.fc7
2007-08-24 05:44:00
checkpoint_advisories
checkpoint_advisories
Linux Kernel IPv6 over IPv4 Memory Leak Denial of Service (CVE-2008-2136)
2008-05-22 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2007-08-31 00:00:00
Linux kernel vulnerabilities
2008-02-14 00:00:00
Linux kernel vulnerabilities
2007-08-30 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
6.2 Medium
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.894 High
EPSS
Percentile
98.7%
Related for OPENVAS:136141256231063344