Lucene search
Copyright (C) 2022 Greenbone AGOPENVAS:13614125623111020170149HistoryJan 28, 2022 - 12:00 a.m.
Mageia: Security Advisory (MGASA-2017-0149)
2022-01-2800:00:00
Copyright (C) 2022 Greenbone AG
plugins.openvas.org
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.1 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.905 High
EPSS
Percentile
98.8%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2022 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.10.2017.0149");
script_cve_id("CVE-2017-7645", "CVE-2017-7875");
script_tag(name:"creation_date", value:"2022-01-28 10:58:44 +0000 (Fri, 28 Jan 2022)");
script_version("2024-02-02T05:06:09+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:09 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"7.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2017-04-25 16:12:29 +0000 (Tue, 25 Apr 2017)");
script_name("Mageia: Security Advisory (MGASA-2017-0149)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2022 Greenbone AG");
script_family("Mageia Linux Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/mageia_linux", "ssh/login/release", re:"ssh/login/release=MAGEIA5");
script_xref(name:"Advisory-ID", value:"MGASA-2017-0149");
script_xref(name:"URL", value:"https://advisories.mageia.org/MGASA-2017-0149.html");
script_xref(name:"URL", value:"https://bugs.mageia.org/show_bug.cgi?id=20861");
script_xref(name:"URL", value:"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.66");
script_xref(name:"URL", value:"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.67");
script_xref(name:"URL", value:"https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.68");
script_tag(name:"summary", value:"The remote host is missing an update for the 'kernel, kernel-userspace-headers, kmod-vboxadditions, kmod-virtualbox, kmod-xtables-addons' package(s) announced via the MGASA-2017-0149 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This kernel update is based on upstream 4.4.68 and fixes at least
the following security issues:
The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through
4.10.11 allows remote attackers to cause a denial of service (system crash)
via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and
fs/nfsd/nfsxdr.c (CVE-2017-7645).
The NFSv2 and NFSv3 server implementations in the Linux kernel through
4.10.13 lack certain checks for the end of a buffer, which allows remote
attackers to trigger pointer-arithmetic errors or possibly have unspecified
other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and
fs/nfsd/nfsxdr.c (CVE-2017-7895).
For other upstream fixes in this update, see the referenced changelogs.");
script_tag(name:"affected", value:"'kernel, kernel-userspace-headers, kmod-vboxadditions, kmod-virtualbox, kmod-xtables-addons' package(s) on Mageia 5.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "MAGEIA5") {
if(!isnull(res = isrpmvuln(pkg:"cpupower", rpm:"cpupower~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"cpupower-devel", rpm:"cpupower-devel~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel", rpm:"kernel~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop-4.4.68-1.mga5", rpm:"kernel-desktop-4.4.68-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop-devel-4.4.68-1.mga5", rpm:"kernel-desktop-devel-4.4.68-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop-devel-latest", rpm:"kernel-desktop-devel-latest~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop-latest", rpm:"kernel-desktop-latest~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop586-4.4.68-1.mga5", rpm:"kernel-desktop586-4.4.68-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop586-devel-4.4.68-1.mga5", rpm:"kernel-desktop586-devel-4.4.68-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop586-devel-latest", rpm:"kernel-desktop586-devel-latest~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-desktop586-latest", rpm:"kernel-desktop586-latest~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-server-4.4.68-1.mga5", rpm:"kernel-server-4.4.68-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-server-devel-4.4.68-1.mga5", rpm:"kernel-server-devel-4.4.68-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-server-devel-latest", rpm:"kernel-server-devel-latest~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-server-latest", rpm:"kernel-server-latest~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-source-4.4.68-1.mga5", rpm:"kernel-source-4.4.68-1.mga5~1~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-source-latest", rpm:"kernel-source-latest~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-userspace-headers", rpm:"kernel-userspace-headers~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kmod-vboxadditions", rpm:"kmod-vboxadditions~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kmod-virtualbox", rpm:"kmod-virtualbox~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kmod-xtables-addons", rpm:"kmod-xtables-addons~2.10~38.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"perf", rpm:"perf~4.4.68~1.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-4.4.68-desktop-1.mga5", rpm:"vboxadditions-kernel-4.4.68-desktop-1.mga5~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-4.4.68-desktop586-1.mga5", rpm:"vboxadditions-kernel-4.4.68-desktop586-1.mga5~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-4.4.68-server-1.mga5", rpm:"vboxadditions-kernel-4.4.68-server-1.mga5~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-desktop-latest", rpm:"vboxadditions-kernel-desktop-latest~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-desktop586-latest", rpm:"vboxadditions-kernel-desktop586-latest~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vboxadditions-kernel-server-latest", rpm:"vboxadditions-kernel-server-latest~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-4.4.68-desktop-1.mga5", rpm:"virtualbox-kernel-4.4.68-desktop-1.mga5~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-4.4.68-desktop586-1.mga5", rpm:"virtualbox-kernel-4.4.68-desktop586-1.mga5~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-4.4.68-server-1.mga5", rpm:"virtualbox-kernel-4.4.68-server-1.mga5~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-desktop-latest", rpm:"virtualbox-kernel-desktop-latest~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-desktop586-latest", rpm:"virtualbox-kernel-desktop586-latest~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"virtualbox-kernel-server-latest", rpm:"virtualbox-kernel-server-latest~5.1.22~3.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-4.4.68-desktop-1.mga5", rpm:"xtables-addons-kernel-4.4.68-desktop-1.mga5~2.10~38.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-4.4.68-desktop586-1.mga5", rpm:"xtables-addons-kernel-4.4.68-desktop586-1.mga5~2.10~38.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-4.4.68-server-1.mga5", rpm:"xtables-addons-kernel-4.4.68-server-1.mga5~2.10~38.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-desktop-latest", rpm:"xtables-addons-kernel-desktop-latest~2.10~38.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-desktop586-latest", rpm:"xtables-addons-kernel-desktop586-latest~2.10~38.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"xtables-addons-kernel-server-latest", rpm:"xtables-addons-kernel-server-latest~2.10~38.mga5", rls:"MAGEIA5"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
mageia
mageia
Updated kernel packages fixes security vulnerabilities
2017-05-26 09:54:58
Updated feh package fixes security vulnerability
2017-05-10 23:47:44
virtuozzo
virtuozzo
nessus
nessus
Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2017-037)
2017-05-12 00:00:00
Virtuozzo 7 : readykernel-patch (VZA-2017-038)
2017-05-30 00:00:00
OracleVM 3.2 : Unbreakable / etc (OVMSA-2017-0121)
2017-07-03 00:00:00
gentoo
gentoo
feh: Arbitrary remote code execution
2017-07-08 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2219-1)
2020-05-25 00:00:00
Fedora Update for feh FEDORA-2018-a84b6d0071
2019-05-07 00:00:00
Debian: Security Advisory (DLA-899-1)
2018-01-16 00:00:00
debian
debian
[SECURITY] [DLA 899-1] feh security update
2017-04-17 17:41:54
[SECURITY] [DLA 2219-1] feh security update
2020-05-24 17:39:51
[SECURITY] [DLA 993-1] linux security update
2017-06-20 03:02:17
debiancve
debiancve
prion
prion
Integer overflow
2017-04-14 18:59:00
Null pointer dereference
2017-04-28 10:59:00
Design/Logic Flaw
2017-04-18 14:59:00
fedora
fedora
[SECURITY] Fedora 28 Update: feh-2.28-1.fc28
2018-11-14 03:24:04
[SECURITY] Fedora 29 Update: feh-2.28-1.fc29
2018-11-14 03:13:24
[SECURITY] Fedora 27 Update: feh-2.28-1.fc27
2018-11-14 02:56:20
osv
osv
feh - security update
2020-05-24 00:00:00
CVE-2017-7875
2017-04-14 18:59:01
feh - security update
2017-04-17 00:00:00
cve
cve
ubuntucve
ubuntucve
centos
centos
kernel, perf, python security update
2017-06-29 21:03:21
kernel, perf, python security update
2017-07-12 17:45:55
redhat
redhat
(RHSA-2017:1615) Important: kernel security and bug fix update
2017-06-28 15:08:50
(RHSA-2017:1647) Important: kernel-rt security and bug fix update
2017-06-28 15:41:10
(RHSA-2017:2429) Important: kernel security and bug fix update
2017-08-08 09:46:00
f5
f5
K15004519 : NFS vulnerability CVE-2017-7895
2017-07-20 00:00:00
K48281956 : NFSv2/3 kernel vulnerability CVE-2017-7645
2017-07-18 00:00:00
myhack58
myhack58
oraclelinux
oraclelinux
kernel security update
2017-09-08 00:00:00
kernel security and bug fix update
2017-06-28 00:00:00
kernel security and bug fix update
2017-06-28 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:17:57
Denial Of Service (DoS)
2019-05-02 06:29:03
redhatcve
redhatcve
CVE-2017-7645
2017-04-19 14:48:04
suse
suse
Security update for Linux Kernel Live Patch 22 for SLE 12 (important)
2017-08-08 18:14:05
Security update for Linux Kernel Live Patch 26 for SLE 12 (important)
2017-09-15 00:10:13
Security update for Linux Kernel Live Patch 20 for SLE 12 (important)
2017-08-08 18:15:15
ubuntu
ubuntu
Linux kernel vulnerabilities
2017-06-07 00:00:00
Linux kernel (Xenial HWE) vulnerabilities
2017-06-07 00:00:00
Linux kernel vulnerabilities
2017-06-07 00:00:00
ibm
ibm
cloudfoundry
cloudfoundry
USN-3312-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2017-06-22 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.1 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.905 High
EPSS
Percentile
98.8%
Related for OPENVAS:13614125623111020170149