Lucene search
Copyright (C) 2009 Greenbone AGOPENVAS:1361412562310840288HistoryMar 23, 2009 - 12:00 a.m.
Ubuntu: Security Advisory (USN-679-1)
2009-03-2300:00:00
Copyright (C) 2009 Greenbone AG
plugins.openvas.org
2
5.7 Medium
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.089 Low
EPSS
Percentile
94.5%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2009 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.840288");
script_cve_id("CVE-2007-5498", "CVE-2008-3831", "CVE-2008-4210", "CVE-2008-4554", "CVE-2008-4576", "CVE-2008-4618", "CVE-2008-4933", "CVE-2008-4934", "CVE-2008-5025", "CVE-2008-5029", "CVE-2008-5033");
script_tag(name:"creation_date", value:"2009-03-23 09:59:50 +0000 (Mon, 23 Mar 2009)");
script_version("2024-02-02T05:06:04+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:04 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"7.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_name("Ubuntu: Security Advisory (USN-679-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2009 Greenbone AG");
script_family("Ubuntu Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU(6\.06\ LTS|7\.10|8\.04\ LTS|8\.10)");
script_xref(name:"Advisory-ID", value:"USN-679-1");
script_xref(name:"URL", value:"https://ubuntu.com/security/notices/USN-679-1");
script_tag(name:"summary", value:"The remote host is missing an update for the 'linux, linux-backports-modules-2.6.15, linux-backports-modules-2.6.22, linux-backports-modules-2.6.24, linux-backports-modules-2.6.27, linux-restricted-modules, linux-restricted-modules-2.6.15, linux-restricted-modules-2.6.22, linux-restricted-modules-2.6.24, linux-source-2.6.15, linux-source-2.6.22, linux-ubuntu-modules-2.6.22, linux-ubuntu-modules-2.6.24' package(s) announced via the USN-679-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"It was discovered that the Xen hypervisor block driver did not correctly
validate requests. A user with root privileges in a guest OS could make a
malicious IO request with a large number of blocks that would crash the
host OS, leading to a denial of service. This only affected Ubuntu 7.10.
(CVE-2007-5498)
It was discovered the i915 video driver did not correctly validate
memory addresses. A local attacker could exploit this to remap memory that
could cause a system crash, leading to a denial of service. This issue did
not affect Ubuntu 6.06 and was previous fixed for Ubuntu 7.10 and 8.04 in
USN-659-1. Ubuntu 8.10 has now been corrected as well. (CVE-2008-3831)
David Watson discovered that the kernel did not correctly strip permissions
when creating files in setgid directories. A local user could exploit this
to gain additional group privileges. This issue only affected Ubuntu 6.06.
(CVE-2008-4210)
Olaf Kirch and Miklos Szeredi discovered that the Linux kernel did
not correctly reject the 'append' flag when handling file splice
requests. A local attacker could bypass append mode and make changes to
arbitrary locations in a file. This issue only affected Ubuntu 7.10 and
8.04. (CVE-2008-4554)
It was discovered that the SCTP stack did not correctly handle INIT-ACK. A
remote user could exploit this by sending specially crafted SCTP traffic
which would trigger a crash in the system, leading to a denial of service.
This issue did not affect Ubuntu 8.10. (CVE-2008-4576)
It was discovered that the SCTP stack did not correctly handle bad packet
lengths. A remote user could exploit this by sending specially crafted SCTP
traffic which would trigger a crash in the system, leading to a denial of
service. This issue did not affect Ubuntu 8.10. (CVE-2008-4618)
Eric Sesterhenn discovered multiple flaws in the HFS+ filesystem. If a
local user or automated system were tricked into mounting a malicious HFS+
filesystem, the system could crash, leading to a denial of service.
(CVE-2008-4933, CVE-2008-4934, CVE-2008-5025)
It was discovered that the Unix Socket handler did not correctly process
the SCM_RIGHTS message. A local attacker could make a malicious socket
request that would crash the system, leading to a denial of service.
(CVE-2008-5029)
It was discovered that the driver for simple i2c audio interfaces did not
correctly validate certain function pointers. A local user could exploit
this to gain root privileges or crash the system, leading to a denial of
service. (CVE-2008-5033)");
script_tag(name:"affected", value:"'linux, linux-backports-modules-2.6.15, linux-backports-modules-2.6.22, linux-backports-modules-2.6.24, linux-backports-modules-2.6.27, linux-restricted-modules, linux-restricted-modules-2.6.15, linux-restricted-modules-2.6.22, linux-restricted-modules-2.6.24, linux-source-2.6.15, linux-source-2.6.22, linux-ubuntu-modules-2.6.22, linux-ubuntu-modules-2.6.24' package(s) on Ubuntu 6.06, Ubuntu 7.10, Ubuntu 8.04, Ubuntu 8.10.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "UBUNTU6.06 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-386", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-686", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-amd64-generic", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-amd64-k8", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-amd64-server", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-amd64-xeon", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-hppa32", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-hppa32-smp", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-hppa64", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-hppa64-smp", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-itanium", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-itanium-smp", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-k7", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-mckinley", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-mckinley-smp", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-powerpc", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-powerpc-smp", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-powerpc64-smp", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-server", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-server-bigiron", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-sparc64", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.15-53-sparc64-smp", ver:"2.6.15-53.74", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU7.10") {
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-386", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-cell", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-generic", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-hppa32", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-hppa64", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-itanium", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-lpia", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-lpiacompat", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-mckinley", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-powerpc", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-powerpc-smp", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-powerpc64-smp", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-rt", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-server", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-sparc64", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-sparc64-smp", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-ume", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-virtual", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.22-16-xen", ver:"2.6.22-16.60", rls:"UBUNTU7.10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU8.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-386", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-generic", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-hppa32", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-hppa64", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-itanium", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-lpia", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-lpiacompat", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-mckinley", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-openvz", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-powerpc", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-powerpc-smp", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-powerpc64-smp", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-rt", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-server", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-sparc64", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-sparc64-smp", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-virtual", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.24-22-xen", ver:"2.6.24-22.45", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU8.10") {
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.27-9-generic", ver:"2.6.27-9.19", rls:"UBUNTU8.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.27-9-server", ver:"2.6.27-9.19", rls:"UBUNTU8.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.27-9-virtual", ver:"2.6.27-9.19", rls:"UBUNTU8.10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
nessus
nessus
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-11-27 00:00:00
openvas
openvas
Ubuntu Update for linux, linux-source-2.6.15/22 vulnerabilities USN-679-1
2009-03-23 00:00:00
Debian Security Advisory DSA 1681-1 (linux-2.6.24)
2008-12-10 00:00:00
RedHat Security Advisory RHSA-2009:0009
2009-01-26 00:00:00
debian
debian
osv
osv
linux-2.6.24 - several vulnerabilities
2008-12-04 00:00:00
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2008-12-15 00:00:00
linux-2.6.24 - several vulnerabilities
2008-10-16 00:00:00
redhat
redhat
(RHSA-2009:0009) Important: kernel security and bug fix update
2009-01-22 00:00:00
(RHSA-2008:1017) Important: kernel security and bug fix update
2008-12-16 00:00:00
(RHSA-2009:0014) Important: kernel security and bug fix update
2009-01-14 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-11-24 00:00:00
[ MDVSA-2008:246 ] kernel
2008-12-29 00:00:00
[ MDVSA-2008:234 ] kernel
2008-11-24 00:00:00
centos
centos
kernel security update
2008-12-17 00:06:25
kernel security update
2009-01-15 13:41:46
kernel security update
2008-05-09 09:41:42
oraclelinux
oraclelinux
kernel security and bug fix update
2008-12-17 00:00:00
kernel security and bug fix update
2009-01-15 00:00:00
kernel security update
2009-02-11 00:00:00
prion
prion
Stack overflow
2008-11-17 23:30:00
Design/Logic Flaw
2008-10-21 00:10:00
Memory corruption
2008-10-20 17:59:00
ubuntucve
ubuntucve
cve
cve
suse
suse
local privilege escalation in kernel-debug
2009-01-20 17:01:02
local privilege escalation in kernel
2009-01-29 16:12:11
local privilege escalation in kernel
2009-01-21 20:06:24
fedora
fedora
[SECURITY] Fedora 8 Update: kernel-2.6.26.6-49.fc8
2008-10-23 16:38:12
[SECURITY] Fedora 9 Update: kernel-2.6.26.6-79.fc9
2008-10-23 16:39:28
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:27:32
Denial Of Service (DoS)
2020-04-10 00:29:19
Privilege Escalation
2020-04-10 00:27:24
seebug
seebug
Linux Kernel hfs_cat_find_brec()本地拒绝服务漏洞
2008-11-17 00:00:00
Linux Kernel i915驱动drivers/char/drm/i915_dma.c内存破坏漏洞
2008-10-22 00:00:00
Linux Kernel 'truncate()'本地特权提升漏洞
2008-09-27 00:00:00
5.7 Medium
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.089 Low
EPSS
Percentile
94.5%
Related for OPENVAS:1361412562310840288