Lucene search
Copyright (C) 2022 Greenbone AGOPENVAS:13614125623111020160401HistoryJan 28, 2022 - 12:00 a.m.
Mageia: Security Advisory (MGASA-2016-0401)
2022-01-2800:00:00
Copyright (C) 2022 Greenbone AG
plugins.openvas.org
6.8 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.1 High
AI Score
Confidence
High
6.2 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
0.052 Low
EPSS
Percentile
92.9%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2022 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.10.2016.0401");
script_cve_id("CVE-2016-7042", "CVE-2016-8630", "CVE-2016-8633");
script_tag(name:"creation_date", value:"2022-01-28 10:58:44 +0000 (Fri, 28 Jan 2022)");
script_version("2024-02-02T05:06:09+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:09 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"6.2");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:H/Au:N/C:C/I:C/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2016-11-28 23:34:34 +0000 (Mon, 28 Nov 2016)");
script_name("Mageia: Security Advisory (MGASA-2016-0401)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2022 Greenbone AG");
script_family("Mageia Linux Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/mageia_linux", "ssh/login/release", re:"ssh/login/release=MAGEIA5");
script_xref(name:"Advisory-ID", value:"MGASA-2016-0401");
script_xref(name:"URL", value:"https://advisories.mageia.org/MGASA-2016-0401.html");
script_xref(name:"URL", value:"https://bugs.mageia.org/show_bug.cgi?id=19791");
script_xref(name:"URL", value:"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.31");
script_xref(name:"URL", value:"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.32");
script_tag(name:"summary", value:"The remote host is missing an update for the 'kernel, kernel-userspace-headers, kmod-vboxadditions, kmod-virtualbox, kmod-xtables-addons' package(s) announced via the MGASA-2016-0401 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update is based on upstream 4.4.32 and fixes at least the following
security issues:
The proc_keys_show function in security/keys/proc.c in the Linux kernel
through 4.8.2, when the GNU Compiler Collection (gcc) stack protector is
enabled, uses an incorrect buffer size for certain timeout data, which
allows local users to cause a denial of service (stack memory corruption
and panic) by reading the /proc/keys file (CVE-2016-7042).
Null pointer dereference in kvm/emulate.c (CVE-2016-8630).
A buffer overflow vulnerability due to a lack of input filtering of
incoming fragmented datagrams was found in the IP-over-1394 driver
[firewire-net] in a fragment handling code in the Linux kernel. A
maliciously formed fragment with a respectively large datagram offset
would cause a memcpy() past the datagram buffer, which would cause a
system panic or possible arbitrary code execution. The flaw requires
[firewire-net] module to be loaded and is remotely exploitable from
connected firewire devices, but not over a local network (CVE-2016-8633).
For other fixes in this update, see the referenced changelogs.");
script_tag(name:"affected", value:"'kernel, kernel-userspace-headers, kmod-vboxadditions, kmod-virtualbox, kmod-xtables-addons' package(s) on Mageia 5.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "MAGEIA5") {
if(!isnull(res = isrpmvuln(pkg:"cpupower", rpm:"cpupower~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"cpupower-devel", rpm:"cpupower-devel~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel", rpm:"kernel~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop-4.4.32-1.mga5", rpm:"kernel-desktop-4.4.32-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop-devel-4.4.32-1.mga5", rpm:"kernel-desktop-devel-4.4.32-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop-devel-latest", rpm:"kernel-desktop-devel-latest~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop-latest", rpm:"kernel-desktop-latest~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop586-4.4.32-1.mga5", rpm:"kernel-desktop586-4.4.32-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop586-devel-4.4.32-1.mga5", rpm:"kernel-desktop586-devel-4.4.32-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop586-devel-latest", rpm:"kernel-desktop586-devel-latest~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop586-latest", rpm:"kernel-desktop586-latest~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-server-4.4.32-1.mga5", rpm:"kernel-server-4.4.32-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-server-devel-4.4.32-1.mga5", rpm:"kernel-server-devel-4.4.32-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-server-devel-latest", rpm:"kernel-server-devel-latest~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-server-latest", rpm:"kernel-server-latest~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-source-4.4.32-1.mga5", rpm:"kernel-source-4.4.32-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-source-latest", rpm:"kernel-source-latest~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-userspace-headers", rpm:"kernel-userspace-headers~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kmod-vboxadditions", rpm:"kmod-vboxadditions~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kmod-virtualbox", rpm:"kmod-virtualbox~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kmod-xtables-addons", rpm:"kmod-xtables-addons~2.10~16.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"perf", rpm:"perf~4.4.32~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-4.4.32-desktop-1.mga5", rpm:"vboxadditions-kernel-4.4.32-desktop-1.mga5~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-4.4.32-desktop586-1.mga5", rpm:"vboxadditions-kernel-4.4.32-desktop586-1.mga5~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-4.4.32-server-1.mga5", rpm:"vboxadditions-kernel-4.4.32-server-1.mga5~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-desktop-latest", rpm:"vboxadditions-kernel-desktop-latest~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-desktop586-latest", rpm:"vboxadditions-kernel-desktop586-latest~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-server-latest", rpm:"vboxadditions-kernel-server-latest~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-4.4.32-desktop-1.mga5", rpm:"virtualbox-kernel-4.4.32-desktop-1.mga5~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-4.4.32-desktop586-1.mga5", rpm:"virtualbox-kernel-4.4.32-desktop586-1.mga5~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-4.4.32-server-1.mga5", rpm:"virtualbox-kernel-4.4.32-server-1.mga5~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-desktop-latest", rpm:"virtualbox-kernel-desktop-latest~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-desktop586-latest", rpm:"virtualbox-kernel-desktop586-latest~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-server-latest", rpm:"virtualbox-kernel-server-latest~5.1.2~11.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-4.4.32-desktop-1.mga5", rpm:"xtables-addons-kernel-4.4.32-desktop-1.mga5~2.10~16.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-4.4.32-desktop586-1.mga5", rpm:"xtables-addons-kernel-4.4.32-desktop586-1.mga5~2.10~16.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-4.4.32-server-1.mga5", rpm:"xtables-addons-kernel-4.4.32-server-1.mga5~2.10~16.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-desktop-latest", rpm:"xtables-addons-kernel-desktop-latest~2.10~16.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-desktop586-latest", rpm:"xtables-addons-kernel-desktop586-latest~2.10~16.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-server-latest", rpm:"xtables-addons-kernel-server-latest~2.10~16.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
mageia
mageia
Updated kernel-4.4.32 packages fixes security vulnerabilities
2016-11-26 13:41:56
Updated kernel-tmb-4.4.32 packages fix security vulnerability
2016-12-07 14:48:35
Updated kernel-linus-4.4.32 packages fix security vulnerability
2016-12-07 14:48:35
openvas
openvas
Mageia: Security Advisory (MGASA-2016-0412)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2016-0411)
2022-01-28 00:00:00
Fedora Update for kernel FEDORA-2016-876deae183
2016-12-07 00:00:00
prion
prion
Design/Logic Flaw
2016-11-28 03:59:00
Code injection
2016-11-28 03:59:00
Memory corruption
2016-10-16 21:59:00
ubuntucve
ubuntucve
veracode
veracode
Arbitrary Code Execution
2019-05-16 02:50:12
Denial Of Service (DoS)
2019-01-15 09:16:23
Denial Of Service (DoS)
2019-05-02 05:51:59
cve
cve
redhatcve
redhatcve
CVE-2016-8633
2016-11-07 07:17:20
CVE-2016-7042
2016-10-13 13:17:40
ibm
ibm
fedora
fedora
[SECURITY] Fedora 25 Update: kernel-4.8.7-300.fc25
2016-11-19 22:23:25
[SECURITY] Fedora 24 Update: kernel-4.8.7-200.fc24
2016-11-17 02:27:30
[SECURITY] Fedora 23 Update: kernel-4.8.8-100.fc23
2016-11-24 08:29:52
nessus
nessus
Fedora 25 : kernel (2016-876deae183)
2016-11-21 00:00:00
Fedora 24 : kernel (2016-14c4187e3a)
2016-11-17 00:00:00
debiancve
debiancve
ubuntu
ubuntu
Linux kernel vulnerability
2016-11-11 00:00:00
Linux kernel vulnerability
2016-11-11 00:00:00
Linux kernel (Qualcomm Snapdragon) vulnerability
2016-11-11 00:00:00
f5
f5
K37012655 : Linux kernel vulnerability CVE-2016-7042
2017-07-07 00:00:00
cloudfoundry
cloudfoundry
USN-3128-2: Linux kernel (Xenial HWE) vulnerability | Cloud Foundry
2016-12-27 00:00:00
USN-3161-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2017-01-31 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2016-12-08 15:07:13
Security update for the Linux Kernel (important)
2016-12-08 20:06:50
Security update for the Linux Kernel (important)
2017-04-25 21:08:55
redhat
redhat
(RHSA-2017:0387) Important: kernel-rt security and bug fix update
2017-03-02 15:22:34
(RHSA-2017:0386) Important: kernel security, bug fix, and enhancement update
2017-03-02 15:22:31
(RHSA-2017:0817) Moderate: kernel security, bug fix, and enhancement update
2017-03-21 08:09:43
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2017-03-03 00:00:00
kernel security, bug fix, and enhancement update
2017-03-02 00:00:00
Unbreakable Enterprise kernel security update
2017-01-12 00:00:00
centos
centos
kernel, perf, python security update
2017-03-06 15:04:15
kernel, perf, python security update
2017-03-24 15:34:16
osv
osv
linux - security update
2016-10-20 00:00:00
linux - security update
2016-10-19 00:00:00
linux - security update
2017-01-01 00:00:00
debian
debian
[SECURITY] [DLA 670-1] linux security update
2016-10-20 00:07:24
[SECURITY] [DSA 3696-1] linux security update
2016-10-19 18:23:21
[SECURITY] [DSA 3696-1] linux security update
2016-10-19 18:23:21
virtuozzo
virtuozzo
6.8 Medium
CVSS3
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.1 High
AI Score
Confidence
High
6.2 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:H/Au:N/C:C/I:C/A:C
0.052 Low
EPSS
Percentile
92.9%
Related for OPENVAS:13614125623111020160401