The remote host is missing an update for the 'systemtap' package(s)
Reporter | Title | Published | Views | Family All 33 |
---|---|---|---|---|
![]() | systemtap security update | 26 Mar 200917:22 | – | centos |
![]() | CVE-2009-0784 | 25 Mar 200923:00 | – | cvelist |
![]() | [SECURITY] [DSA 1755-1] New systemtap packages fix local privilege escalation | 25 Mar 200921:16 | – | debian |
![]() | Debian DSA-1755-1 : systemtap - race condition | 30 Mar 200900:00 | – | nessus |
![]() | RHEL 4 / 5 : systemtap (RHSA-2009:0373) | 27 Mar 200900:00 | – | nessus |
![]() | CentOS 4 / 5 : systemtap (CESA-2009:0373) | 6 Jan 201000:00 | – | nessus |
![]() | Scientific Linux Security Update : systemtap on SL4.x, SL5.x i386/x86_64 | 1 Aug 201200:00 | – | nessus |
![]() | Oracle Linux 5 : systemtap (ELSA-2009-0373) | 12 Jul 201300:00 | – | nessus |
![]() | CVE-2009-0784 | 25 Mar 200923:30 | – | nvd |
![]() | CentOS Security Advisory CESA-2009:0373 (systemtap) | 15 Apr 200900:00 | – | openvas |
# SPDX-FileCopyrightText: 2011 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_xref(name:"URL", value:"http://lists.centos.org/pipermail/centos-announce/2009-April/015744.html");
script_oid("1.3.6.1.4.1.25623.1.0.880840");
script_version("2023-07-12T05:05:04+0000");
script_tag(name:"last_modification", value:"2023-07-12 05:05:04 +0000 (Wed, 12 Jul 2023)");
script_tag(name:"creation_date", value:"2011-08-09 08:20:34 +0200 (Tue, 09 Aug 2011)");
script_tag(name:"cvss_base", value:"6.3");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:M/Au:N/C:N/I:C/A:C");
script_xref(name:"CESA", value:"2009:0373");
script_cve_id("CVE-2009-0784");
script_name("CentOS Update for systemtap CESA-2009:0373 centos5 i386");
script_tag(name:"summary", value:"The remote host is missing an update for the 'systemtap'
package(s) announced via the referenced advisory.");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2011 Greenbone AG");
script_family("CentOS Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/centos", "ssh/login/rpms", re:"ssh/login/release=CentOS5");
script_tag(name:"affected", value:"systemtap on CentOS 5");
script_tag(name:"insight", value:"SystemTap is an instrumentation infrastructure for systems running version
2.6 of the Linux kernel. SystemTap scripts can collect system operations
data, greatly simplifying information gathering. Collected data can then
assist in performance measuring, functional testing, and performance and
function problem diagnosis.
A race condition was discovered in SystemTap that could allow users in the
stapusr group to elevate privileges to that of members of the stapdev group
(and hence root), bypassing directory confinement restrictions and allowing
them to insert arbitrary SystemTap kernel modules. (CVE-2009-0784)
Note: This issue was only exploitable if another SystemTap kernel module
was placed in the 'systemtap/' module directory for the currently running
kernel.
Red Hat would like to thank Erik Sjölund for reporting this issue.
SystemTap users should upgrade to these updated packages, which contain a
backported patch to correct this issue.");
script_tag(name:"solution", value:"Please install the updated packages.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
if(release == "CentOS5")
{
if ((res = isrpmvuln(pkg:"systemtap", rpm:"systemtap~0.7.2~3.el5_3", rls:"CentOS5")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"systemtap-client", rpm:"systemtap-client~0.7.2~3.el5_3", rls:"CentOS5")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"systemtap-runtime", rpm:"systemtap-runtime~0.7.2~3.el5_3", rls:"CentOS5")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"systemtap-server", rpm:"systemtap-server~0.7.2~3.el5_3", rls:"CentOS5")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"systemtap-testsuite", rpm:"systemtap-testsuite~0.7.2~3.el5_3", rls:"CentOS5")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo