Lucene search
Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.netOPENVAS:1361412562310703364HistorySep 21, 2015 - 12:00 a.m.
Debian Security Advisory DSA 3364-1 (linux - security update)
2015-09-2100:00:00
Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net
plugins.openvas.org
10
0.028 Low
EPSS
Percentile
89.5%
Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation or denial of service.
CVE-2015-0272
It was discovered that NetworkManager would set IPv6 MTUs based on
the values received in IPv6 RAs (Router Advertisements), without
sufficiently validating these values. A remote attacker could
exploit this attack to disable IPv6 connectivity. This has been
mitigated by adding validation in the kernel.
CVE-2015-2925
Jann Horn discovered that when a subdirectory of a filesystem is
bind-mounted into a container that has its own user and mount
namespaces, a process with CAP_SYS_ADMIN capability in the user
namespace can access files outside of the subdirectory. The
default Debian configuration mitigated this as it does not allow
unprivileged users to create new user namespaces.
CVE-2015-5156
Jason Wang discovered that when a virtio_net device is connected
to a bridge in the same VM, a series of TCP packets forwarded
through the bridge may cause a heap buffer overflow. A remote
attacker could use this to cause a denial of service (crash) or
possibly for privilege escalation.
CVE-2015-6252
Michael S. Tsirkin of Red Hat Engineering found that the vhost
driver leaked file descriptors passed to it with the
VHOST_SET_LOG_FD ioctl command. A privileged local user with access
to the /dev/vhost-net file, either directly or via libvirt, could
use this to cause a denial of service (hang or crash).
CVE-2015-6937
It was found that the Reliable Datagram Sockets (RDS) protocol
implementation did not verify that an underlying transport exists
when creating a connection. Depending on how a local RDS
application initialised its sockets, a remote attacker might be
able to cause a denial of service (crash) by sending a crafted
packet.
#796036
Xavier Chantry discovered that the patch provided by the aufs
project to correct behaviour of memory-mapped files from an aufs
mount introduced a race condition in the msync() system call.
Ben Hutchings found that it also introduced a similar bug in the
madvise_remove() function. A local attacker could use this to
cause a denial of service or possibly for privilege escalation.
# OpenVAS Vulnerability Test
# $Id: deb_3364.nasl 14278 2019-03-18 14:47:26Z cfischer $
# Auto-generated from advisory DSA 3364-1 using nvtgen 1.0
# Script version: 1.0
#
# Author:
# Greenbone Networks
#
# Copyright:
# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net
# Text descriptions are largely excerpted from the referenced
# advisory, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.703364");
script_version("$Revision: 14278 $");
script_cve_id("CVE-2015-0272", "CVE-2015-2925", "CVE-2015-5156", "CVE-2015-6252", "CVE-2015-6937");
script_name("Debian Security Advisory DSA 3364-1 (linux - security update)");
script_tag(name:"last_modification", value:"$Date: 2019-03-18 15:47:26 +0100 (Mon, 18 Mar 2019) $");
script_tag(name:"creation_date", value:"2015-09-21 00:00:00 +0200 (Mon, 21 Sep 2015)");
script_tag(name:"cvss_base", value:"6.9");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:M/Au:N/C:C/I:C/A:C");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
script_xref(name:"URL", value:"http://www.debian.org/security/2015/dsa-3364.html");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net");
script_family("Debian Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB(7|8)");
script_tag(name:"affected", value:"linux on Debian Linux");
script_tag(name:"solution", value:"For the oldstable distribution (wheezy), these problems have been fixed
in version 3.2.68-1+deb7u4.
CVE-2015-2925 and
#796036
do not affect the
wheezy distribution.
For the stable distribution (jessie), these problems have been fixed in
version 3.16.7-ckt11-1+deb8u4.
We recommend that you upgrade your linux packages.");
script_tag(name:"summary", value:"Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation or denial of service.
CVE-2015-0272
It was discovered that NetworkManager would set IPv6 MTUs based on
the values received in IPv6 RAs (Router Advertisements), without
sufficiently validating these values. A remote attacker could
exploit this attack to disable IPv6 connectivity. This has been
mitigated by adding validation in the kernel.
CVE-2015-2925
Jann Horn discovered that when a subdirectory of a filesystem is
bind-mounted into a container that has its own user and mount
namespaces, a process with CAP_SYS_ADMIN capability in the user
namespace can access files outside of the subdirectory. The
default Debian configuration mitigated this as it does not allow
unprivileged users to create new user namespaces.
CVE-2015-5156
Jason Wang discovered that when a virtio_net device is connected
to a bridge in the same VM, a series of TCP packets forwarded
through the bridge may cause a heap buffer overflow. A remote
attacker could use this to cause a denial of service (crash) or
possibly for privilege escalation.
CVE-2015-6252
Michael S. Tsirkin of Red Hat Engineering found that the vhost
driver leaked file descriptors passed to it with the
VHOST_SET_LOG_FD ioctl command. A privileged local user with access
to the /dev/vhost-net file, either directly or via libvirt, could
use this to cause a denial of service (hang or crash).
CVE-2015-6937
It was found that the Reliable Datagram Sockets (RDS) protocol
implementation did not verify that an underlying transport exists
when creating a connection. Depending on how a local RDS
application initialised its sockets, a remote attacker might be
able to cause a denial of service (crash) by sending a crafted
packet.
#796036
Xavier Chantry discovered that the patch provided by the aufs
project to correct behaviour of memory-mapped files from an aufs
mount introduced a race condition in the msync() system call.
Ben Hutchings found that it also introduced a similar bug in the
madvise_remove() function. A local attacker could use this to
cause a denial of service or possibly for privilege escalation.");
script_tag(name:"vuldetect", value:"This check tests the installed software version using the apt package manager.");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
res = "";
report = "";
if((res = isdpkgvuln(pkg:"linux-doc-3.2", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-486", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-4kc-malta", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-5kc-malta", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-686-pae", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-amd64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-armel", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-armhf", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-i386", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-ia64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-mips", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-mipsel", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-powerpc", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-s390", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-s390x", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-sparc", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-amd64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-common", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-common-rt", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-iop32x", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-itanium", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-ixp4xx", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-kirkwood", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-loongson-2f", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-mckinley", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-mv78xx0", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-mx5", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-octeon", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-omap", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-orion5x", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-powerpc", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-powerpc-smp", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-powerpc64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-r4k-ip22", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-r5k-cobalt", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-r5k-ip32", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-rt-686-pae", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-rt-amd64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-s390x", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-sb1-bcm91250a", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-sb1a-bcm91480b", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-sparc64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-sparc64-smp", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-versatile", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-vexpress", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-486", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-4kc-malta", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-5kc-malta", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-686-pae", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-686-pae-dbg", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-amd64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-amd64-dbg", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-iop32x", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-itanium", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-ixp4xx", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-kirkwood", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-loongson-2f", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-mckinley", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-mv78xx0", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-mx5", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-octeon", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-omap", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-orion5x", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-powerpc", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-powerpc-smp", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-powerpc64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-r4k-ip22", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-r5k-cobalt", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-r5k-ip32", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-rt-686-pae", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-rt-686-pae-dbg", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-rt-amd64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-rt-amd64-dbg", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-s390x", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-s390x-dbg", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-s390x-tape", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-sb1-bcm91250a", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-sb1a-bcm91480b", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-sparc64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-sparc64-smp", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-versatile", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-vexpress", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-libc-dev", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-manual-3.2", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-source-3.2", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-support-3.2.0-4", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"xen-linux-system-3.2.0-4-686-pae", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"xen-linux-system-3.2.0-4-amd64", ver:"3.2.68-1+deb7u4", rls:"DEB7")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-compiler-gcc-4.8-arm", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-compiler-gcc-4.8-s390", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-compiler-gcc-4.8-x86", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-doc-3.16", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-4kc-malta", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-586", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-5kc-malta", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-686-pae", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-amd64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-arm64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-armel", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-armhf", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-i386", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-mips", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-mipsel", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-powerpc", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-ppc64el", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-all-s390x", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-amd64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-arm64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-armmp", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-armmp-lpae", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-common", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-ixp4xx", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-kirkwood", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-loongson-2e", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-loongson-2f", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-loongson-3", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-octeon", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-orion5x", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-powerpc", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-powerpc-smp", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-powerpc64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-powerpc64le", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-r4k-ip22", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-r5k-ip32", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-s390x", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-sb1-bcm91250a", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.16.0-4-versatile", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-4kc-malta", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-5kc-malta", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-mips", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-all-mipsel", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-common", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-loongson-2f", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-octeon", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-r4k-ip22", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-r5k-cobalt", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-r5k-ip32", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-sb1-bcm91250a", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-headers-3.2.0-4-sb1a-bcm91480b", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-4kc-malta", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-586", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-5kc-malta", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-686-pae", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-686-pae-dbg", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-amd64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-amd64-dbg", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-arm64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-arm64-dbg", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-armmp", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-armmp-lpae", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-ixp4xx", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-kirkwood", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-loongson-2e", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-loongson-2f", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-loongson-3", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-octeon", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-orion5x", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-powerpc", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-powerpc-smp", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-powerpc64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-powerpc64le", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-r4k-ip22", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-r5k-ip32", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-s390x", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-s390x-dbg", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-sb1-bcm91250a", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.16.0-4-versatile", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-4kc-malta", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-5kc-malta", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-loongson-2f", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-octeon", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-r4k-ip22", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-r5k-cobalt", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-r5k-ip32", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-sb1-bcm91250a", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-image-3.2.0-4-sb1a-bcm91480b", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-libc-dev", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-manual-3.16", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-source-3.16", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"linux-support-3.16.0-4", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if((res = isdpkgvuln(pkg:"xen-linux-system-3.16.0-4-amd64", ver:"3.16.7-ckt11-1+deb8u4", rls:"DEB8")) != NULL) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if (__pkg_match) {
exit(99);
}Related
securityvulns
securityvulns
[SECURITY] [DSA 3364-1] linux security update
2015-10-05 00:00:00
Linux kernel multiple security vulnerabilities
2015-09-21 00:00:00
debian
debian
[SECURITY] [DSA 3364-1] linux security update
2015-09-21 18:43:25
[SECURITY] [DSA 3364-1] linux security update
2015-09-21 18:43:25
[SECURITY] [DLA 310-1] linux-2.6 security update
2015-09-21 21:07:12
openvas
openvas
Debian Security Advisory DSA 3364-1 (linux - security update)
2015-09-21 00:00:00
Ubuntu Update for linux-lts-trusty USN-2775-1
2015-10-21 00:00:00
Ubuntu Update for linux-lts-vivid USN-2778-1
2015-10-21 00:00:00
osv
osv
linux - security update
2015-09-21 00:00:00
linux-2.6 - security update
2015-09-21 00:00:00
linux-2.6 - security update
2015-10-12 00:00:00
nessus
nessus
Debian DSA-3364-1 : linux - security update
2015-09-22 00:00:00
Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2775-1)
2015-10-20 00:00:00
Ubuntu 15.04 : linux vulnerabilities (USN-2779-1)
2015-10-21 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2015-10-20 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2015-10-19 00:00:00
Linux kernel vulnerabilities
2015-10-19 00:00:00
cloudfoundry
cloudfoundry
USN-2778-1 Linux kernel vulnerabilities | Cloud Foundry
2015-11-03 00:00:00
USN-2751-1 Linux Kernel (Vivid HWE) Vulnerability | Cloud Foundry
2015-10-07 00:00:00
USN-2798-1 Linux kernel vulnerability | Cloud Foundry
2015-11-12 00:00:00
suse
suse
Security update for kernel-source (important)
2015-10-13 11:09:43
Security update for the Linux Kernel (important)
2015-12-17 16:11:14
Security update for the Linux Kernel (important)
2015-11-26 13:10:56
f5
f5
SOL17457 - Linux kernel vulnerability CVE-2015-6252
2015-10-19 00:00:00
K17457 : Linux kernel vulnerability CVE-2015-6252
2015-10-19 00:00:00
K98102572 : Linux kernel vulnerability CVE-2015-7990
2016-01-28 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: kernel-4.1.8-200.fc22
2015-10-03 21:26:13
[SECURITY] Fedora 23 Update: kernel-4.2.1-300.fc23
2015-09-24 05:23:44
[SECURITY] Fedora 21 Update: kernel-4.1.8-100.fc21
2015-10-03 21:55:06
debiancve
debiancve
cve
cve
prion
prion
Null pointer dereference
2015-10-19 10:59:00
Design/Logic Flaw
2015-10-19 10:59:00
Buffer overflow
2015-10-19 10:59:00
ubuntucve
ubuntucve
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-11-04 00:00:00
Unbreakable Enterprise kernel security update
2015-11-05 00:00:00
Unbreakable Enterprise kernel security update
2015-11-04 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:29:38
Improper Access Control
2019-05-02 05:20:50
centos
centos
ModemManager, NetworkManager, libnm, network, nm security update
2015-11-30 19:44:35
kernel, perf, python security update
2015-11-04 10:54:35
ibm
ibm
redhat
redhat
mageia
mageia
Updated kernel packages fix security vulnerabilities
2015-11-20 01:08:19