Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:136141256231112202468311HistoryJun 13, 2024 - 12:00 a.m.
Ubuntu: Security Advisory (USN-6831-1)
2024-06-1300:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
ubuntu
security advisory
usn-6831-1
linux kernel
updates
vulnerabilities
null pointer
privilege escalation
arm32
powerpc
x86
dma engine
efi core
gpu drivers
infiniband
network drivers
usb
file system
bluetooth
networking core
ipv4
ipv6
l2tp
netfilter
wireless networking
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.0%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.12.2024.6831.1");
script_cve_id("CVE-2021-47063", "CVE-2021-47070", "CVE-2023-52504", "CVE-2024-0841", "CVE-2024-26688", "CVE-2024-26712", "CVE-2024-26733", "CVE-2024-26735", "CVE-2024-26736", "CVE-2024-26748", "CVE-2024-26749", "CVE-2024-26751", "CVE-2024-26752", "CVE-2024-26754", "CVE-2024-26763", "CVE-2024-26764", "CVE-2024-26766", "CVE-2024-26772", "CVE-2024-26773", "CVE-2024-26777", "CVE-2024-26778", "CVE-2024-26779", "CVE-2024-26788", "CVE-2024-26790", "CVE-2024-26791", "CVE-2024-26793", "CVE-2024-26801", "CVE-2024-26804", "CVE-2024-26805", "CVE-2024-26835", "CVE-2024-26839", "CVE-2024-26840", "CVE-2024-26845", "CVE-2024-26848", "CVE-2024-27405", "CVE-2024-27410", "CVE-2024-27412", "CVE-2024-27413", "CVE-2024-27414", "CVE-2024-27416", "CVE-2024-27417", "CVE-2024-35811");
script_tag(name:"creation_date", value:"2024-06-13 04:07:56 +0000 (Thu, 13 Jun 2024)");
script_version("2024-06-13T05:05:46+0000");
script_tag(name:"last_modification", value:"2024-06-13 05:05:46 +0000 (Thu, 13 Jun 2024)");
script_tag(name:"cvss_base", value:"6.8");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:S/C:C/I:C/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2024-02-02 15:38:25 +0000 (Fri, 02 Feb 2024)");
script_name("Ubuntu: Security Advisory (USN-6831-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("Ubuntu Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU(18\.04\ LTS|20\.04\ LTS)");
script_xref(name:"Advisory-ID", value:"USN-6831-1");
script_xref(name:"URL", value:"https://ubuntu.com/security/notices/USN-6831-1");
script_tag(name:"summary", value:"The remote host is missing an update for the 'linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp' package(s) announced via the USN-6831-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"It was discovered that the HugeTLB file system component of the Linux
Kernel contained a NULL pointer dereference vulnerability. A privileged
attacker could possibly use this to to cause a denial of service.
(CVE-2024-0841)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
- ARM32 architecture,
- PowerPC architecture,
- x86 architecture,
- DMA engine subsystem,
- EFI core,
- GPU drivers,
- InfiniBand drivers,
- Multiple devices driver,
- Network drivers,
- Power supply drivers,
- TCM subsystem,
- Userspace I/O drivers,
- USB subsystem,
- Framebuffer layer,
- AFS file system,
- File systems infrastructure,
- BTRFS file system,
- Ext4 file system,
- Bluetooth subsystem,
- Networking core,
- IPv4 networking,
- IPv6 networking,
- L2TP protocol,
- MAC80211 subsystem,
- Netfilter,
- Netlink,
- Wireless networking,
(CVE-2024-26748, CVE-2024-27417, CVE-2024-26840, CVE-2023-52504,
CVE-2024-26790, CVE-2024-26763, CVE-2024-26805, CVE-2024-26773,
CVE-2021-47063, CVE-2024-26791, CVE-2024-27413, CVE-2024-26788,
CVE-2024-27405, CVE-2024-26845, CVE-2024-26766, CVE-2021-47070,
CVE-2024-26839, CVE-2024-26712, CVE-2024-27412, CVE-2024-26752,
CVE-2024-26778, CVE-2024-26735, CVE-2024-26736, CVE-2024-27410,
CVE-2024-26779, CVE-2024-26804, CVE-2024-26749, CVE-2024-26793,
CVE-2024-26764, CVE-2024-26751, CVE-2024-35811, CVE-2024-26835,
CVE-2024-26772, CVE-2024-26777, CVE-2024-26688, CVE-2024-27416,
CVE-2024-26801, CVE-2024-26733, CVE-2024-27414, CVE-2024-26754,
CVE-2024-26848)");
script_tag(name:"affected", value:"'linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp' package(s) on Ubuntu 18.04, Ubuntu 20.04.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "UBUNTU18.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1073-ibm", ver:"5.4.0-1073.78~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1110-raspi", ver:"5.4.0-1110.122~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1125-oracle", ver:"5.4.0-1125.134~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1126-aws", ver:"5.4.0-1126.136~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1130-gcp", ver:"5.4.0-1130.139~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1131-azure", ver:"5.4.0-1131.138~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-186-generic", ver:"5.4.0-186.206~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-186-lowlatency", ver:"5.4.0-186.206~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-aws", ver:"5.4.0.1126.136~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-azure", ver:"5.4.0.1131.138~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-gcp", ver:"5.4.0.1130.139~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-generic-hwe-18.04", ver:"5.4.0.186.206~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-ibm", ver:"5.4.0.1073.78~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-lowlatency-hwe-18.04", ver:"5.4.0.186.206~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-oem", ver:"5.4.0.186.206~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-oem-osp1", ver:"5.4.0.186.206~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-oracle", ver:"5.4.0.1125.134~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-raspi-hwe-18.04", ver:"5.4.0.1110.122~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-snapdragon-hwe-18.04", ver:"5.4.0.186.206~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-virtual-hwe-18.04", ver:"5.4.0.186.206~18.04.1", rls:"UBUNTU18.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU20.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1045-xilinx-zynqmp", ver:"5.4.0-1045.49", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1073-ibm", ver:"5.4.0-1073.78", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1093-gkeop", ver:"5.4.0-1093.97", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1110-raspi", ver:"5.4.0-1110.122", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1114-kvm", ver:"5.4.0-1114.121", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1125-oracle", ver:"5.4.0-1125.134", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1126-aws", ver:"5.4.0-1126.136", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1130-gcp", ver:"5.4.0-1130.139", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-1131-azure", ver:"5.4.0-1131.138", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-186-generic", ver:"5.4.0-186.206", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-186-generic-lpae", ver:"5.4.0-186.206", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-5.4.0-186-lowlatency", ver:"5.4.0-186.206", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-aws-lts-20.04", ver:"5.4.0.1126.123", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-azure-lts-20.04", ver:"5.4.0.1131.125", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-gcp-lts-20.04", ver:"5.4.0.1130.132", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-generic", ver:"5.4.0.186.184", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-generic-lpae", ver:"5.4.0.186.184", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-gkeop", ver:"5.4.0.1093.91", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-gkeop-5.4", ver:"5.4.0.1093.91", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-ibm-lts-20.04", ver:"5.4.0.1073.102", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-kvm", ver:"5.4.0.1114.110", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-lowlatency", ver:"5.4.0.186.184", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-oem", ver:"5.4.0.186.184", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-oem-osp1", ver:"5.4.0.186.184", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-oracle-lts-20.04", ver:"5.4.0.1125.118", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-raspi", ver:"5.4.0.1110.140", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-raspi2", ver:"5.4.0.1110.140", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-virtual", ver:"5.4.0.186.184", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"linux-image-xilinx-zynqmp", ver:"5.4.0.1045.45", rls:"UBUNTU20.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
osv
osv
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6831-1)
2024-06-12 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.4-2024-068)
2024-05-31 00:00:00
ubuntucve
ubuntucve
debiancve
debiancve
redhatcve
redhatcve
vulnrichment
vulnrichment
CVE-2024-26845 scsi: target: core: Add TMF to tmr_list handling
2024-04-17 10:10:09
CVE-2024-27416 Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
2024-05-17 11:51:04
CVE-2024-27417 ipv6: fix potential "struct net" leak in inet6_rtm_getaddr()
2024-05-17 11:51:07
cvelist
cvelist
CVE-2024-27410 wifi: nl80211: reject iftype change with mesh ID change
2024-05-17 11:50:43
CVE-2024-27414 rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back
2024-05-17 11:50:57
CVE-2024-26839 IB/hfi1: Fix a memleak in init_credit_return
2024-04-17 10:10:05
cve
cve
nvd
nvd
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.0%
Related for OPENVAS:136141256231112202468311