Lucene search
Copyright (C) 2022 Greenbone AGOPENVAS:1361412562311220221782HistoryJun 01, 2022 - 12:00 a.m.
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1782)
2022-06-0100:00:00
Copyright (C) 2022 Greenbone AG
plugins.openvas.org
1
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.5 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.095 Low
EPSS
Percentile
94.7%
The remote host is missing an update for the Huawei EulerOS
# SPDX-FileCopyrightText: 2022 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.2.2022.1782");
script_cve_id("CVE-2022-0492", "CVE-2022-0847");
script_tag(name:"creation_date", value:"2022-06-01 14:53:44 +0000 (Wed, 01 Jun 2022)");
script_version("2024-02-05T14:36:57+0000");
script_tag(name:"last_modification", value:"2024-02-05 14:36:57 +0000 (Mon, 05 Feb 2024)");
script_tag(name:"cvss_base", value:"7.2");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2022-03-10 19:07:20 +0000 (Thu, 10 Mar 2022)");
script_name("Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1782)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2022 Greenbone AG");
script_family("Huawei EulerOS Local Security Checks");
script_dependencies("gb_huawei_euleros_consolidation.nasl");
script_mandatory_keys("ssh/login/euleros", "ssh/login/rpms", re:"ssh/login/release=EULEROS\-2\.0SP10\-X86_64");
script_xref(name:"Advisory-ID", value:"EulerOS-SA-2022-1782");
script_xref(name:"URL", value:"https://developer.huaweicloud.com/intl/en-us/euleros/securitydetail.html?secId=EulerOS-SA-2022-1782");
script_tag(name:"summary", value:"The remote host is missing an update for the Huawei EulerOS 'kernel' package(s) announced via the EulerOS-SA-2022-1782 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"A flaw was found in the way the 'flags' member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.(CVE-2022-0847)
A vulnerability was found in the Linux kernel's cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.(CVE-2022-0492)");
script_tag(name:"affected", value:"'kernel' package(s) on Huawei EulerOS V2.0SP10(x86_64).");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "EULEROS-2.0SP10-x86_64") {
if(!isnull(res = isrpmvuln(pkg:"bpftool", rpm:"bpftool~4.18.0~147.5.2.7.h840.eulerosv2r10", rls:"EULEROS-2.0SP10-x86_64"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel", rpm:"kernel~4.18.0~147.5.2.7.h840.eulerosv2r10", rls:"EULEROS-2.0SP10-x86_64"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-abi-stablelists", rpm:"kernel-abi-stablelists~4.18.0~147.5.2.7.h840.eulerosv2r10", rls:"EULEROS-2.0SP10-x86_64"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-tools", rpm:"kernel-tools~4.18.0~147.5.2.7.h840.eulerosv2r10", rls:"EULEROS-2.0SP10-x86_64"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-tools-libs", rpm:"kernel-tools-libs~4.18.0~147.5.2.7.h840.eulerosv2r10", rls:"EULEROS-2.0SP10-x86_64"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"python3-perf", rpm:"python3-perf~4.18.0~147.5.2.7.h840.eulerosv2r10", rls:"EULEROS-2.0SP10-x86_64"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
nessus
nessus
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2022-1782)
2022-06-01 00:00:00
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2022-1781)
2022-06-01 00:00:00
Rocky Linux 8 : kernel-rt (RLSA-2022:819)
2022-03-11 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1781)
2022-06-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:1036-1)
2022-03-31 00:00:00
QNAP QTS Privilege Escalation Vulnerability (QSA-22-05)
2022-03-22 00:00:00
rocky
rocky
kernel-rt security and bug fix update
2022-03-11 02:24:05
kernel security, bug fix, and enhancement update
2022-03-11 02:26:54
kernel-rt security and bug fix update
2022-03-10 14:37:54
threatpost
threatpost
Bug in the Linux Kernel Allows Privilege Escalation, Container Escape
2022-03-08 14:52:05
redhat
redhat
(RHSA-2022:0820) Important: kernel security, bug fix, and enhancement update
2022-03-10 14:39:03
(RHSA-2022:0821) Important: kernel-rt security and bug fix update
2022-03-10 14:39:50
(RHSA-2022:4642) Important: kernel security and bug fix update
2022-05-18 12:14:40
f5
f5
K54724312 : Linux kernel vulnerability CVE-2022-0492
2022-05-25 00:00:00
K63603485 : Linux kernel vulnerability CVE-2022-0847
2022-03-11 00:00:00
githubexploit
githubexploit
Exploit for Missing Authorization in Linux Linux Kernel
2022-03-07 10:03:17
Exploit for Improper Initialization in Linux Linux Kernel
2022-06-29 12:02:13
Exploit for Improper Initialization in Linux Linux Kernel
2022-05-17 04:23:34
redhatcve
redhatcve
CVE-2022-0492
2022-02-07 11:59:48
CVE-2022-0847
2022-03-07 12:28:23
cbl_mariner
cbl_mariner
CVE-2022-0492 affecting package kernel for versions less than 5.15.26.1-2
2022-04-09 06:52:47
CVE-2022-0492 affecting package kernel 5.10.189.1-1
2022-04-07 06:04:22
CVE-2022-0847 affecting package kernel for versions less than 5.15.26.1-1
2022-04-09 06:52:47
attackerkb
attackerkb
CVE-2022-0847
2022-03-10 00:00:00
rapid7blog
rapid7blog
CVE-2022-0847: Arbitrary File Overwrite Vulnerability in Linux Kernel
2022-03-09 22:25:34
trendmicroblog
trendmicroblog
redos
redos
ROS-20220314-02
2022-03-14 00:00:00
ROS-20220324-01
2022-03-24 00:00:00
hivepro
hivepro
Dirty Pipe: A privilege escalation vulnerability in Linux Kernel
2022-03-08 16:41:45
Linux Distributions affected by a privilege escalation vulnerability
2022-03-08 08:30:44
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2022-03-10 00:00:00
Unbreakable Enterprise kernel-container security update
2022-02-09 00:00:00
Unbreakable Enterprise kernel-container security update
2022-02-28 00:00:00
cve
cve
CVE-2022-0847
2022-03-10 17:44:00
CVE-2022-0492
2022-03-03 19:15:00
ubuntucve
ubuntucve
CVE-2022-0492
2022-02-08 00:00:00
CVE-2022-0847
2022-03-07 00:00:00
packetstorm
packetstorm
Docker cgroups Container Escape
2023-12-07 00:00:00
Dirty Pipe Local Privilege Escalation
2022-03-10 00:00:00
cnvd
cnvd
Linux kernel authorization issue vulnerability
2022-02-09 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0151
2022-02-05 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0151
2022-02-10 00:00:00
prion
prion
Design/Logic Flaw
2022-03-03 19:15:00
Design/Logic Flaw
2022-03-10 17:44:00
centos
centos
bpftool, kernel, perf, python security update
2022-05-19 15:09:15
virtuozzo
virtuozzo
metasploit
metasploit
Docker cgroups Container Escape
2023-11-28 18:44:08
Dirty Pipe Local Privilege Escalation via CVE-2022-0847
2022-03-07 15:49:27
veracode
veracode
Privilege Escalation
2022-03-26 18:16:10
checkpoint_advisories
checkpoint_advisories
Linux Kernel Privilege Escalation (CVE-2022-0847)
2022-10-31 00:00:00
fortinet
fortinet
CVE-2022-0847 on Linux Kernel
2023-04-11 00:00:00
zdt
zdt
Linux Kernel 5.8 < 5.16.11 - Local Privilege Escalation (DirtyPipe) Exploit
2022-03-08 00:00:00
Dirty Pipe SUID Binary Hijack Privilege Escalation Exploit
2022-03-09 00:00:00
Dirty Pipe Linux Privilege Escalation Exploit
2022-03-09 00:00:00
securelist
securelist
CVE-2022-0847 aka Dirty Pipe vulnerability in Linux kernel
2022-03-14 14:11:07
osv
osv
thn
thn
'Dirty Pipe' Linux Flaw Affects a Wide Range of QNAP NAS Devices
2022-03-15 03:44:00
New Linux Kernel cgroups Vulnerability Could Let Attackers Escape Container
2022-03-05 08:43:00
debiancve
debiancve
CVE-2022-0492
2022-03-03 19:15:00
CVE-2022-0847
2022-03-10 17:44:00
cisa
cisa
Dirty Pipe Privilege Escalation Vulnerability in Linux
2022-03-10 00:00:00
cisa_kev
cisa_kev
Linux Kernel Privilege Escalation Vulnerability
2022-04-25 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2022-03-08 00:00:00
Security update for the Linux Kernel (important)
2022-03-08 00:00:00
exploitdb
exploitdb
Linux Kernel 5.8 < 5.16.11 - Local Privilege Escalation (DirtyPipe)
2022-03-08 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.5 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.095 Low
EPSS
Percentile
94.7%
Related for OPENVAS:1361412562311220221782