Lucene search
Copyright (C) 2023 Greenbone AGOPENVAS:1361412562311122015360HistoryMar 08, 2023 - 12:00 a.m.
Debian: Security Advisory (DLA-360-1)
2023-03-0800:00:00
Copyright (C) 2023 Greenbone AG
plugins.openvas.org
1
5.8 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H
6.9 Medium
AI Score
Confidence
Low
5.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:P/I:P/A:C
0.002 Low
EPSS
Percentile
61.7%
The remote host is missing an update for the Debian
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.1.2.2015.360");
script_cve_id("CVE-2013-7446", "CVE-2015-7799", "CVE-2015-7833", "CVE-2015-7990", "CVE-2015-8324");
script_tag(name:"creation_date", value:"2023-03-08 12:56:44 +0000 (Wed, 08 Mar 2023)");
script_version("2024-02-02T05:06:10+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:10 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"5.9");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:M/Au:N/C:P/I:P/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2015-12-28 19:44:20 +0000 (Mon, 28 Dec 2015)");
script_name("Debian: Security Advisory (DLA-360-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2023 Greenbone AG");
script_family("Debian Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB6");
script_xref(name:"Advisory-ID", value:"DLA-360-1");
script_xref(name:"URL", value:"https://www.debian.org/lts/security/2015/DLA-360-1");
script_tag(name:"summary", value:"The remote host is missing an update for the Debian 'linux-2.6' package(s) announced via the DLA-360-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update fixes the CVEs described below.
CVE-2013-7446
Dmitry Vyukov discovered that a particular sequence of valid operations on local (AF_UNIX) sockets can result in a use-after-free. This may be used to cause a denial of service (crash) or possibly for privilege escalation.
CVE-2015-7799
Guo Yong Gang discovered that a user granted access to /dev/ppp can cause a denial of service (crash) by passing invalid parameters to the PPPIOCSMAXCID ioctl. This also applies to ISDN PPP device nodes.
CVE-2015-7833
Sergej Schumilo, Hendrik Schwartke and Ralf Spenneberg discovered a flaw in the processing of certain USB device descriptors in the usbvision driver. An attacker with physical access to the system can use this flaw to crash the system.
CVE-2015-7990
It was discovered that the fix for CVE-2015-6937 was incomplete. A race condition when sending a message on unbound socket can still cause a NULL pointer dereference. A remote attacker might be able to cause a denial of service (crash) by sending a crafted packet.
CVE-2015-8324
Valintinr reported that an attempt to mount a corrupted ext4 filesystem may result in a kernel panic. A user permitted to mount filesystems could use this flaw to crash the system.
For the oldoldstable distribution (squeeze), these problems have been fixed in version 2.6.32-48squeeze17. We recommend that you upgrade your linux-2.6 packages.
For the oldstable (wheezy) and stable (jessie) distributions, CVE-2015-7833, CVE-2015-7990 and CVE-2015-8324 have been fixed and the other issues will be fixed soon.");
script_tag(name:"affected", value:"'linux-2.6' package(s) on Debian 6.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "DEB6") {
if(!isnull(res = isdpkgvuln(pkg:"firmware-linux-free", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-base", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-doc-2.6.32", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-486", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-686-bigmem", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-all", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-all-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-all-i386", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-common", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-common-openvz", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-common-vserver", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-common-xen", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-openvz-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-openvz-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-vserver-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-vserver-686-bigmem", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-vserver-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-xen-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-headers-2.6.32-5-xen-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-486", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-686-bigmem", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-686-bigmem-dbg", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-amd64-dbg", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-openvz-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-openvz-686-dbg", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-openvz-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-openvz-amd64-dbg", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-vserver-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-vserver-686-bigmem", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-vserver-686-bigmem-dbg", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-vserver-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-vserver-amd64-dbg", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-xen-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-xen-686-dbg", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-xen-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-2.6.32-5-xen-amd64-dbg", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-libc-dev", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-manual-2.6.32", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-patch-debian-2.6.32", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-source-2.6.32", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-support-2.6.32-5", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-tools-2.6.32", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"xen-linux-system-2.6.32-5-xen-686", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"xen-linux-system-2.6.32-5-xen-amd64", ver:"2.6.32-48squeeze17", rls:"DEB6"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
nessus
nessus
Debian DLA-360-1 : linux-2.6 security update
2015-12-09 00:00:00
F5 Networks BIG-IP : Linux kernel vulnerability (K98102572)
2017-07-10 00:00:00
Debian DSA-3396-1 : linux - security update
2015-11-11 00:00:00
osv
osv
linux-2.6 - security update
2015-12-08 00:00:00
linux - security update
2015-11-10 00:00:00
ctdb - regression update
2015-12-17 00:00:00
debian
debian
[SECURITY] [DLA 360-1] linux-2.6 security update
2015-12-08 14:08:00
[SECURITY] [DSA 3396-1] linux security update
2015-11-10 08:08:51
[SECURITY] [DSA 3396-1] linux security update
2015-11-10 08:08:51
ubuntucve
ubuntucve
debiancve
debiancve
f5
f5
K98102572 : Linux kernel vulnerability CVE-2015-7990
2016-01-28 00:00:00
SOL98102572 - Linux kernel vulnerability CVE-2015-7990
2016-01-28 00:00:00
SOL20022580 - Linux kernel vulnerability CVE-2013-7446
2016-01-28 00:00:00
openvas
openvas
Debian Security Advisory DSA 3396-1 (linux - security update)
2015-11-10 00:00:00
Debian: Security Advisory (DSA-3426)
2016-03-08 00:00:00
Debian: Security Advisory (DSA-3396-1)
2015-11-09 00:00:00
prion
prion
Race condition
2015-12-28 11:59:00
Design/Logic Flaw
2015-10-19 10:59:00
Design/Logic Flaw
2015-12-28 11:59:00
cve
cve
ubuntu
ubuntu
Linux kernel vulnerabilities
2016-02-02 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2016-02-02 00:00:00
Linux kernel vulnerabilities
2016-02-02 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: kernel-4.2.6-200.fc22
2015-11-19 12:24:24
[SECURITY] Fedora 23 Update: kernel-4.2.6-300.fc23
2015-11-19 10:05:31
[SECURITY] Fedora 21 Update: kernel-4.1.13-100.fc21
2015-11-20 23:26:41
suse
suse
Security update for kernel live patch 4 (important)
2016-02-08 18:13:14
Security update for kernel live patch SP1 0 (important)
2016-02-04 19:13:10
Security update for kernel live patch 7 (important)
2016-02-08 18:22:32
android
android
CVE-2013-7446
2016-09-01 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:29:39
cloudfoundry
cloudfoundry
USN-2842-1/USN-2842-2 Linux kernel vulnerability | Cloud Foundry
2016-01-07 00:00:00
USN-2778-1 Linux kernel vulnerabilities | Cloud Foundry
2015-11-03 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2017-02-09 00:00:00
Unbreakable Enterprise kernel security update
2017-02-09 00:00:00
Unbreakable Enterprise kernel security update
2016-05-20 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3364-1] linux security update
2015-10-05 00:00:00
5.8 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H
6.9 Medium
AI Score
Confidence
Low
5.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:P/I:P/A:C
0.002 Low
EPSS
Percentile
61.7%
Related for OPENVAS:1361412562311122015360