use-after-free in libxl_list_cpupool under memory pressure
2013-10-10T12:00:00
ID XSA-70 Type xen Reporter Xen Project Modified 2013-10-10T12:22:00
Description
ISSUE DESCRIPTION
If realloc(3) fails then libxl_list_cpupool will incorrectly return the now-free original pointer.
IMPACT
An attacker may be able to cause a multithreaded toolstack using this function to race against itself leading to heap corruption and a potential DoS.
Depending on the malloc implementation code execution cannot be ruled out.
VULNERABLE SYSTEMS
The flaw is present in Xen 4.2 onwards.
Systems using the libxl toolstack library are vulnerable.
{"enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "vulnersScore": 7.5}, "reporter": "Xen Project", "id": "XSA-70", "cvss": {"score": 4.4, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "published": "2013-10-10T12:00:00", "history": [], "description": "#### ISSUE DESCRIPTION\nIf realloc(3) fails then libxl_list_cpupool will incorrectly return the now-free original pointer.\n#### IMPACT\nAn attacker may be able to cause a multithreaded toolstack using this function to race against itself leading to heap corruption and a potential DoS.\nDepending on the malloc implementation code execution cannot be ruled out.\n#### VULNERABLE SYSTEMS\nThe flaw is present in Xen 4.2 onwards.\nSystems using the libxl toolstack library are vulnerable.\n", "bulletinFamily": "software", "viewCount": 4, "cvelist": ["CVE-2013-4371"], "type": "xen", "hash": "62858e906d373c2986cce8ec84be33e71814a19b4858ffb2d5ac74215218025c", "references": [], "title": "use-after-free in libxl_list_cpupool under memory pressure", "href": "http://xenbits.xen.org/xsa/advisory-70.html", "lastseen": "2016-04-01T21:57:14", "edition": 1, "objectVersion": "1.2", "modified": "2013-10-10T12:22:00"}
{"cve": [{"lastseen": "2017-04-18T15:54:00", "references": ["http://www.openwall.com/lists/oss-security/2013/10/10/12", "http://security.gentoo.org/glsa/glsa-201407-03.xml"], "edition": 2, "description": "Use-after-free vulnerability in the libxl_list_cpupool function in the libxl toolstack library in Xen 4.2.x and 4.3.x, when running \"under memory pressure,\" returns the original pointer when the realloc function fails, which allows local users to cause a denial of service (heap corruption and crash) and possibly execute arbitrary code via unspecified vectors.", "reporter": "NVD", "published": "2013-10-17T19:55:04", "title": "CVE-2013-4371", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "type": "cve", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2013-4371"], "scanner": [], "modified": "2017-01-06T21:59:11", "cpe": ["cpe:/o:xen:xen:4.3.0", "cpe:/o:xen:xen:4.2.0", "cpe:/o:xen:xen:4.2.3", "cpe:/o:xen:xen:4.2.1", "cpe:/o:xen:xen:4.2.2"], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4371", "id": "CVE-2013-4371", "cvss": {"score": 4.4, "vector": "AV:LOCAL/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-09-01T23:33:21", "references": ["http://www.nessus.org/u?8d3b5371", "https://bugzilla.redhat.com/show_bug.cgi?id=1012550", "https://bugzilla.redhat.com/show_bug.cgi?id=1012587", "https://bugzilla.redhat.com/show_bug.cgi?id=1012582", "https://bugzilla.redhat.com/show_bug.cgi?id=1012561", "https://bugzilla.redhat.com/show_bug.cgi?id=1012554"], "pluginID": "70550", "description": "Five security fixes CVE-2013-4368 CVE-2013-4369 CVE-2013-4370 CVE-2013-4371 CVE-2013-4375\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2013-10-23T00:00:00", "title": "Fedora 18 : xen-4.2.3-4.fc18 (2013-19053)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-4375"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:18", "p-cpe:/a:fedoraproject:fedora:xen"], "id": "FEDORA_2013-19053.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70550", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2013-19053.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70550);\n script_version(\"$Revision: 1.5 $\");\n script_cvs_date(\"$Date: 2015/10/19 21:37:38 $\");\n\n script_cve_id(\"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\");\n script_bugtraq_id(62930, 62931, 62934, 62935);\n script_xref(name:\"FEDORA\", value:\"2013-19053\");\n\n script_name(english:\"Fedora 18 : xen-4.2.3-4.fc18 (2013-19053)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Five security fixes CVE-2013-4368 CVE-2013-4369 CVE-2013-4370\nCVE-2013-4371 CVE-2013-4375\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012550\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012554\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012561\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012582\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012587\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119493.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?8d3b5371\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xen package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:18\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/10/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/10/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^18([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 18.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC18\", reference:\"xen-4.2.3-4.fc18\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xen\");\n}\n", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:45:37", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1012550", "http://www.nessus.org/u?c5a45238", "https://bugzilla.redhat.com/show_bug.cgi?id=1012587", "https://bugzilla.redhat.com/show_bug.cgi?id=1012582", "https://bugzilla.redhat.com/show_bug.cgi?id=1012561", "https://bugzilla.redhat.com/show_bug.cgi?id=1012554"], "pluginID": "70549", "description": "Five security fixes CVE-2013-4368 CVE-2013-4369 CVE-2013-4370 CVE-2013-4371 CVE-2013-4375\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2013-10-23T00:00:00", "title": "Fedora 19 : xen-4.2.3-4.fc19 (2013-19048)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-4375"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:19", "p-cpe:/a:fedoraproject:fedora:xen"], "id": "FEDORA_2013-19048.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70549", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2013-19048.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70549);\n script_version(\"$Revision: 1.5 $\");\n script_cvs_date(\"$Date: 2015/10/19 21:37:38 $\");\n\n script_cve_id(\"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\");\n script_bugtraq_id(62930, 62931, 62934, 62935);\n script_xref(name:\"FEDORA\", value:\"2013-19048\");\n\n script_name(english:\"Fedora 19 : xen-4.2.3-4.fc19 (2013-19048)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Five security fixes CVE-2013-4368 CVE-2013-4369 CVE-2013-4370\nCVE-2013-4371 CVE-2013-4375\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012550\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012554\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012561\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012582\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1012587\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119531.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c5a45238\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xen package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:19\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/10/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/10/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^19([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 19.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC19\", reference:\"xen-4.2.3-4.fc19\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xen\");\n}\n", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:08:31", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=842513", "https://bugzilla.novell.com/show_bug.cgi?id=836239", "https://bugzilla.novell.com/show_bug.cgi?id=841766", "https://bugzilla.novell.com/show_bug.cgi?id=828623", "https://bugzilla.novell.com/show_bug.cgi?id=842515", "https://bugzilla.novell.com/show_bug.cgi?id=833796", "https://bugzilla.novell.com/show_bug.cgi?id=842512", "https://bugzilla.novell.com/show_bug.cgi?id=835896", "https://bugzilla.novell.com/show_bug.cgi?id=839600", "https://bugzilla.novell.com/show_bug.cgi?id=833251", "https://bugzilla.novell.com/show_bug.cgi?id=839596", "https://bugzilla.novell.com/show_bug.cgi?id=842511", "https://bugzilla.novell.com/show_bug.cgi?id=840196", "https://bugzilla.novell.com/show_bug.cgi?id=845520", "http://lists.opensuse.org/opensuse-updates/2013-12/msg00115.html", "https://bugzilla.novell.com/show_bug.cgi?id=840592", "https://bugzilla.novell.com/show_bug.cgi?id=834751", "https://bugzilla.novell.com/show_bug.cgi?id=842514", "https://bugzilla.novell.com/show_bug.cgi?id=833483"], "pluginID": "74865", "description": "Xen was updated to 4.2.3 c/s 26170 to fix various bugs and security issues.\n\nFollowing issues were fixed :\n\n - bnc#845520 - CVE-2013-4416: xen: ocaml xenstored mishandles oversized message replies\n\n - bnc#833483 - Boot Failure with xen kernel in UEFI mode with error 'No memory for trampoline'\n\n - Improvements to block-dmmd script bnc#828623\n\n - bnc#840196 - MTU size on Dom0 gets reset when booting DomU with e1000 device\n\n - bnc#840592 - CVE-2013-4355: XSA-63: xen: Information leaks through I/O instruction emulation\n\n - bnc#841766 - CVE-2013-4361: XSA-66: xen: Information leak through fbld instruction emulation\n\n - bnc#842511 - CVE-2013-4368: XSA-67: xen: Information leak through outs instruction emulation\n\n - bnc#842512 - CVE-2013-4369: XSA-68: xen: possible null dereference when parsing vif ratelimiting info\n\n - bnc#842513 - CVE-2013-4370: XSA-69: xen: misplaced free in ocaml xc_vcpu_getaffinity stub\n\n - bnc#842514 - CVE-2013-4371: XSA-70: xen: use-after-free in libxl_list_cpupool under memory pressure\n\n - bnc#842515 - CVE-2013-4375: XSA-71: xen: qemu disk backend (qdisk) resource leak\n\n - bnc#839596 - CVE-2013-1442: XSA-62: xen: Information leak on AVX and/or LWP capable CPUs\n\n - bnc#833251 - [HP BCS SLES11 Bug]: In HP’s UEFI x86_64 platform and with xen environment, in booting stage ,xen hypervisor will panic.\n\n - bnc#833796 - Xen: migration broken from xsave-capable to xsave-incapable host\n\n - bnc#834751 - [HP BCS SLES11 Bug]: In xen, “shutdown –y 0 –h” cannot power off system\n\n - bnc#839600 - [HP BCS SLES11 Bug]: In HP’s UEFI x86_64 platform and sles11sp3 with xen environment, xen hypervisor will panic on multiple blades nPar. \n\n - bnc#833251 - [HP BCS SLES11 Bug]: In HP’s UEFI x86_64 platform and with xen environment, in booting stage ,xen hypervisor will panic.\n\n - bnc#835896 - vcpus not started after upgrading Dom0 from 11SP2 to SP3\n\n - bnc#836239 - SLES 11 SP3 Xen security patch does not automatically update UEFI boot binary", "edition": 5, "reporter": "Tenable", "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : xen (openSUSE-SU-2013:1953-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4416", "CVE-2013-4361", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-08-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:xen-doc-html", "cpe:/o:novell:opensuse:12.3", "p-cpe:/a:novell:opensuse:xen-devel", "p-cpe:/a:novell:opensuse:xen-kmp-desktop", "p-cpe:/a:novell:opensuse:xen-kmp-pae", "p-cpe:/a:novell:opensuse:xen", "p-cpe:/a:novell:opensuse:xen-tools-debuginfo", "p-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo", "p-cpe:/a:novell:opensuse:xen-doc-pdf", "p-cpe:/a:novell:opensuse:xen-kmp-pae-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs", "p-cpe:/a:novell:opensuse:xen-tools-domU-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs-debuginfo", "p-cpe:/a:novell:opensuse:xen-libs-32bit", "p-cpe:/a:novell:opensuse:xen-debugsource", "p-cpe:/a:novell:opensuse:xen-tools", "p-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo", "p-cpe:/a:novell:opensuse:xen-tools-domU", "p-cpe:/a:novell:opensuse:xen-kmp-default", "p-cpe:/a:novell:opensuse:xen-libs-debuginfo-32bit"], "id": "OPENSUSE-2013-1021.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=74865", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2013-1021.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(74865);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2018/08/13 14:32:39\");\n\n script_cve_id(\"CVE-2013-1442\", \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\", \"CVE-2013-4416\");\n\n script_name(english:\"openSUSE Security Update : xen (openSUSE-SU-2013:1953-1)\");\n script_summary(english:\"Check for the openSUSE-2013-1021 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Xen was updated to 4.2.3 c/s 26170 to fix various bugs and security\nissues.\n\nFollowing issues were fixed :\n\n - bnc#845520 - CVE-2013-4416: xen: ocaml xenstored\n mishandles oversized message replies\n\n - bnc#833483 - Boot Failure with xen kernel in UEFI mode\n with error 'No memory for trampoline'\n\n - Improvements to block-dmmd script bnc#828623\n\n - bnc#840196 - MTU size on Dom0 gets reset when booting\n DomU with e1000 device\n\n - bnc#840592 - CVE-2013-4355: XSA-63: xen: Information\n leaks through I/O instruction emulation\n\n - bnc#841766 - CVE-2013-4361: XSA-66: xen: Information\n leak through fbld instruction emulation\n\n - bnc#842511 - CVE-2013-4368: XSA-67: xen: Information\n leak through outs instruction emulation\n\n - bnc#842512 - CVE-2013-4369: XSA-68: xen: possible null\n dereference when parsing vif ratelimiting info\n\n - bnc#842513 - CVE-2013-4370: XSA-69: xen: misplaced free\n in ocaml xc_vcpu_getaffinity stub\n\n - bnc#842514 - CVE-2013-4371: XSA-70: xen: use-after-free\n in libxl_list_cpupool under memory pressure\n\n - bnc#842515 - CVE-2013-4375: XSA-71: xen: qemu disk\n backend (qdisk) resource leak\n\n - bnc#839596 - CVE-2013-1442: XSA-62: xen: Information\n leak on AVX and/or LWP capable CPUs\n\n - bnc#833251 - [HP BCS SLES11 Bug]: In HP’s UEFI\n x86_64 platform and with xen environment, in booting\n stage ,xen hypervisor will panic.\n\n - bnc#833796 - Xen: migration broken from xsave-capable to\n xsave-incapable host\n\n - bnc#834751 - [HP BCS SLES11 Bug]: In xen,\n “shutdown –y 0 –h” cannot power\n off system\n\n - bnc#839600 - [HP BCS SLES11 Bug]: In HP’s UEFI\n x86_64 platform and sles11sp3 with xen environment, xen\n hypervisor will panic on multiple blades nPar. \n\n - bnc#833251 - [HP BCS SLES11 Bug]: In HP’s UEFI\n x86_64 platform and with xen environment, in booting\n stage ,xen hypervisor will panic.\n\n - bnc#835896 - vcpus not started after upgrading Dom0 from\n 11SP2 to SP3\n\n - bnc#836239 - SLES 11 SP3 Xen security patch does not\n automatically update UEFI boot binary\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://lists.opensuse.org/opensuse-updates/2013-12/msg00115.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=828623\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=833251\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=833483\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=833796\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=834751\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=835896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=836239\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=839596\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=839600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=840196\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=840592\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=841766\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842513\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842514\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842515\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=845520\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected xen packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:M/Au:S/C:N/I:N/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-doc-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-doc-pdf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-desktop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-kmp-pae-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-libs-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-domU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:xen-tools-domU-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:12.3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE12\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"12.3\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-debugsource-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-devel-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-kmp-default-4.2.3_01_k3.7.10_1.16-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-kmp-default-debuginfo-4.2.3_01_k3.7.10_1.16-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-kmp-desktop-4.2.3_01_k3.7.10_1.16-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-kmp-desktop-debuginfo-4.2.3_01_k3.7.10_1.16-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-kmp-pae-4.2.3_01_k3.7.10_1.16-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-kmp-pae-debuginfo-4.2.3_01_k3.7.10_1.16-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-libs-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-libs-debuginfo-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-tools-domU-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"xen-tools-domU-debuginfo-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", cpu:\"x86_64\", reference:\"xen-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", cpu:\"x86_64\", reference:\"xen-doc-html-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", cpu:\"x86_64\", reference:\"xen-doc-pdf-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", cpu:\"x86_64\", reference:\"xen-libs-32bit-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", cpu:\"x86_64\", reference:\"xen-libs-debuginfo-32bit-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", cpu:\"x86_64\", reference:\"xen-tools-4.2.3_01-1.22.4\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", cpu:\"x86_64\", reference:\"xen-tools-debuginfo-4.2.3_01-1.22.4\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"xen\");\n}\n", "cvss": {"score": 5.2, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:NONE/I:NONE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:06:44", "references": ["https://bugzilla.novell.com/841766", "http://support.novell.com/security/cve/CVE-2013-4361.html", "http://www.nessus.org/u?f72f7687", "http://support.novell.com/security/cve/CVE-2013-1442.html", "http://support.novell.com/security/cve/CVE-2013-4370.html", "http://support.novell.com/security/cve/CVE-2013-4416.html", "https://bugzilla.novell.com/824676", "http://support.novell.com/security/cve/CVE-2013-4355.html", "https://bugzilla.novell.com/833251", "https://bugzilla.novell.com/842515", "http://support.novell.com/security/cve/CVE-2013-4371.html", "https://bugzilla.novell.com/839600", "https://bugzilla.novell.com/840592", "https://bugzilla.novell.com/828623", "https://bugzilla.novell.com/835896", "http://support.novell.com/security/cve/CVE-2013-1918.html", "https://bugzilla.novell.com/833483", "https://bugzilla.novell.com/839596", "https://bugzilla.novell.com/834751", "https://bugzilla.novell.com/840196", "https://bugzilla.novell.com/842511", "https://bugzilla.novell.com/817799", "https://bugzilla.novell.com/845520", "http://support.novell.com/security/cve/CVE-2013-4369.html", "http://www.nessus.org/u?6759046d", "https://bugzilla.novell.com/833796", "http://support.novell.com/security/cve/CVE-2013-4375.html", "https://bugzilla.novell.com/826882", "http://support.novell.com/security/cve/CVE-2013-4368.html", "https://bugzilla.novell.com/836239", "https://bugzilla.novell.com/842513", "https://bugzilla.novell.com/842514", "http://support.novell.com/security/cve/CVE-2013-1432.html", "https://bugzilla.novell.com/842512"], "pluginID": "83602", "description": "XEN has been updated to version 4.2.3 c/s 26170, fixing various bugs and security issues.\n\n - CVE-2013-4416: XSA-72: Fixed ocaml xenstored that mishandled oversized message replies\n\n - CVE-2013-4355: XSA-63: Fixed information leaks through I/O instruction emulation\n\n - CVE-2013-4361: XSA-66: Fixed information leak through fbld instruction emulation\n\n - CVE-2013-4368: XSA-67: Fixed information leak through outs instruction emulation\n\n - CVE-2013-4369: XSA-68: Fixed possible null dereference when parsing vif ratelimiting info\n\n - CVE-2013-4370: XSA-69: Fixed misplaced free in ocaml xc_vcpu_getaffinity stub\n\n - CVE-2013-4371: XSA-70: Fixed use-after-free in libxl_list_cpupool under memory pressure\n\n - CVE-2013-4375: XSA-71: xen: qemu disk backend (qdisk) resource leak\n\n - CVE-2013-1442: XSA-62: Fixed information leak on AVX and/or LWP capable CPUs\n\n - CVE-2013-1432: XSA-58: Page reference counting error due to XSA-45/CVE-2013-1918 fixes.\n\nVarious bugs have also been fixed :\n\n - Boot failure with xen kernel in UEFI mode with error 'No memory for trampoline' (bnc#833483)\n\n - Improvements to block-dmmd script (bnc#828623)\n\n - MTU size on Dom0 gets reset when booting DomU with e1000 device (bnc#840196)\n\n - In HP's UEFI x86_64 platform and with xen environment, in booting stage, xen hypervisor will panic.\n (bnc#833251)\n\n - Xen: migration broken from xsave-capable to xsave-incapable host (bnc#833796)\n\n - In xen, 'shutdown -y 0 -h' cannot power off system (bnc#834751)\n\n - In HP's UEFI x86_64 platform with xen environment, xen hypervisor will panic on multiple blades nPar.\n (bnc#839600)\n\n - vcpus not started after upgrading Dom0 from SLES 11 SP2 to SP3 (bnc#835896)\n\n - SLES 11 SP3 Xen security patch does not automatically update UEFI boot binary (bnc#836239)\n\n - Failed to setup devices for vm instance when start multiple vms simultaneously (bnc#824676)\n\n - SLES 9 SP4 guest fails to start after upgrading to SLES 11 SP3 (bnc#817799)\n\n - Various upstream fixes have been included.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2015-05-20T00:00:00", "title": "SUSE SLED11 / SLES11 Security Update : Xen (SUSE-SU-2013:1774-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-1918", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-07-31T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:xen-doc-html", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:xen-doc-pdf", "p-cpe:/a:novell:suse_linux:xen-kmp-pae", "p-cpe:/a:novell:suse_linux:xen-kmp-default", "p-cpe:/a:novell:suse_linux:xen-tools-domU", "p-cpe:/a:novell:suse_linux:xen-libs", "p-cpe:/a:novell:suse_linux:xen", "p-cpe:/a:novell:suse_linux:xen-tools"], "id": "SUSE_SU-2013-1774-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=83602", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2013:1774-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83602);\n script_version(\"2.2\");\n script_cvs_date(\"Date: 2018/07/31 17:27:54\");\n\n script_cve_id(\"CVE-2013-1432\", \"CVE-2013-1442\", \"CVE-2013-1918\", \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\", \"CVE-2013-4416\");\n script_bugtraq_id(59615, 60799, 62630, 62708, 62710, 62930, 62931, 62932, 62934, 62935, 63404);\n\n script_name(english:\"SUSE SLED11 / SLES11 Security Update : Xen (SUSE-SU-2013:1774-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"XEN has been updated to version 4.2.3 c/s 26170, fixing various bugs\nand security issues.\n\n - CVE-2013-4416: XSA-72: Fixed ocaml xenstored that\n mishandled oversized message replies\n\n - CVE-2013-4355: XSA-63: Fixed information leaks through\n I/O instruction emulation\n\n - CVE-2013-4361: XSA-66: Fixed information leak through\n fbld instruction emulation\n\n - CVE-2013-4368: XSA-67: Fixed information leak through\n outs instruction emulation\n\n - CVE-2013-4369: XSA-68: Fixed possible null dereference\n when parsing vif ratelimiting info\n\n - CVE-2013-4370: XSA-69: Fixed misplaced free in ocaml\n xc_vcpu_getaffinity stub\n\n - CVE-2013-4371: XSA-70: Fixed use-after-free in\n libxl_list_cpupool under memory pressure\n\n - CVE-2013-4375: XSA-71: xen: qemu disk backend (qdisk)\n resource leak\n\n - CVE-2013-1442: XSA-62: Fixed information leak on AVX\n and/or LWP capable CPUs\n\n - CVE-2013-1432: XSA-58: Page reference counting error due\n to XSA-45/CVE-2013-1918 fixes.\n\nVarious bugs have also been fixed :\n\n - Boot failure with xen kernel in UEFI mode with error 'No\n memory for trampoline' (bnc#833483)\n\n - Improvements to block-dmmd script (bnc#828623)\n\n - MTU size on Dom0 gets reset when booting DomU with e1000\n device (bnc#840196)\n\n - In HP's UEFI x86_64 platform and with xen environment,\n in booting stage, xen hypervisor will panic.\n (bnc#833251)\n\n - Xen: migration broken from xsave-capable to\n xsave-incapable host (bnc#833796)\n\n - In xen, 'shutdown -y 0 -h' cannot power off system\n (bnc#834751)\n\n - In HP's UEFI x86_64 platform with xen environment, xen\n hypervisor will panic on multiple blades nPar.\n (bnc#839600)\n\n - vcpus not started after upgrading Dom0 from SLES 11 SP2\n to SP3 (bnc#835896)\n\n - SLES 11 SP3 Xen security patch does not automatically\n update UEFI boot binary (bnc#836239)\n\n - Failed to setup devices for vm instance when start\n multiple vms simultaneously (bnc#824676)\n\n - SLES 9 SP4 guest fails to start after upgrading to SLES\n 11 SP3 (bnc#817799)\n\n - Various upstream fixes have been included.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n # http://download.suse.com/patch/finder/?keywords=44263de6887ab03471056913790a1e0e\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6759046d\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1432.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1442.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1918.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4355.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4361.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4368.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4369.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4370.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4371.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4375.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4416.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/817799\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/824676\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/826882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/828623\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/833251\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/833483\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/833796\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/834751\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/835896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/836239\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/839596\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/839600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/840196\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/840592\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/841766\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/842511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/842512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/842513\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/842514\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/842515\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/845520\"\n );\n # https://www.suse.com/support/update/announcement/2013/suse-su-20131774-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?f72f7687\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use YaST online_update.\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Software Development Kit 11 SP3 :\n\nzypper in -t patch sdksp3-xen-201310-8479\n\nSUSE Linux Enterprise Server 11 SP3 :\n\nzypper in -t patch slessp3-xen-201310-8479\n\nSUSE Linux Enterprise Desktop 11 SP3 :\n\nzypper in -t patch sledsp3-xen-201310-8479\n\nTo bring your system up-to-date, use 'zypper patch'.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-doc-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-doc-pdf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:xen-tools-domU\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/27\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLED11|SLES11)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED11 / SLES11\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\nif (cpu >!< \"i386|i486|i586|i686|x86_64\") audit(AUDIT_ARCH_NOT, \"i386 / i486 / i586 / i686 / x86_64\", cpu);\n\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES11\" && (! ereg(pattern:\"^3$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES11 SP3\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED11\" && (! ereg(pattern:\"^3$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED11 SP3\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-kmp-default-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-libs-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-tools-domU-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-doc-html-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-doc-pdf-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-libs-32bit-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-tools-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-kmp-pae-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"xen-kmp-default-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"xen-libs-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"xen-tools-domU-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"i586\", reference:\"xen-kmp-pae-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-kmp-default-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-libs-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-tools-domU-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-doc-html-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-doc-pdf-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-libs-32bit-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-tools-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"x86_64\", reference:\"xen-kmp-pae-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"xen-kmp-default-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"xen-libs-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"xen-tools-domU-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:\"3\", cpu:\"i586\", reference:\"xen-kmp-pae-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"Xen\");\n}\n", "cvss": {"score": 7.4, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:05:07", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=842513", "https://bugzilla.novell.com/show_bug.cgi?id=824676", "http://support.novell.com/security/cve/CVE-2013-4361.html", "https://bugzilla.novell.com/show_bug.cgi?id=836239", "https://bugzilla.novell.com/show_bug.cgi?id=841766", "http://support.novell.com/security/cve/CVE-2013-1442.html", "http://support.novell.com/security/cve/CVE-2013-4370.html", "https://bugzilla.novell.com/show_bug.cgi?id=828623", "https://bugzilla.novell.com/show_bug.cgi?id=842515", "http://support.novell.com/security/cve/CVE-2013-4416.html", "http://support.novell.com/security/cve/CVE-2013-4329.html", "https://bugzilla.novell.com/show_bug.cgi?id=803712", "http://support.novell.com/security/cve/CVE-2013-2211.html", "http://support.novell.com/security/cve/CVE-2013-4355.html", "https://bugzilla.novell.com/show_bug.cgi?id=833796", "http://support.novell.com/security/cve/CVE-2013-4371.html", "https://bugzilla.novell.com/show_bug.cgi?id=842512", "https://bugzilla.novell.com/show_bug.cgi?id=835896", "https://bugzilla.novell.com/show_bug.cgi?id=823608", "https://bugzilla.novell.com/show_bug.cgi?id=839600", "https://bugzilla.novell.com/show_bug.cgi?id=839618", "http://support.novell.com/security/cve/CVE-2013-2194.html", "https://bugzilla.novell.com/show_bug.cgi?id=833251", "http://support.novell.com/security/cve/CVE-2013-2196.html", "https://bugzilla.novell.com/show_bug.cgi?id=839596", "http://support.novell.com/security/cve/CVE-2013-1918.html", "https://bugzilla.novell.com/show_bug.cgi?id=842511", "https://bugzilla.novell.com/show_bug.cgi?id=840196", "http://support.novell.com/security/cve/CVE-2013-4369.html", "http://support.novell.com/security/cve/CVE-2013-2195.html", "https://bugzilla.novell.com/show_bug.cgi?id=845520", "https://bugzilla.novell.com/show_bug.cgi?id=840592", "http://support.novell.com/security/cve/CVE-2013-4375.html", "https://bugzilla.novell.com/show_bug.cgi?id=823786", "https://bugzilla.novell.com/show_bug.cgi?id=834751", "https://bugzilla.novell.com/show_bug.cgi?id=842514", "http://support.novell.com/security/cve/CVE-2013-4368.html", "https://bugzilla.novell.com/show_bug.cgi?id=826882", "https://bugzilla.novell.com/show_bug.cgi?id=823011", "https://bugzilla.novell.com/show_bug.cgi?id=817799", "https://bugzilla.novell.com/show_bug.cgi?id=833483", "http://support.novell.com/security/cve/CVE-2013-1432.html"], "pluginID": "70969", "description": "XEN has been updated to version 4.2.3 c/s 26170, fixing various bugs and security issues.\n\n - XSA-72: Fixed ocaml xenstored that mishandled oversized message replies. (CVE-2013-4416)\n\n - XSA-63: Fixed information leaks through I/O instruction emulation. (CVE-2013-4355)\n\n - XSA-66: Fixed information leak through fbld instruction emulation. (CVE-2013-4361)\n\n - XSA-67: Fixed information leak through outs instruction emulation. (CVE-2013-4368)\n\n - XSA-68: Fixed possible null dereference when parsing vif ratelimiting info. (CVE-2013-4369)\n\n - XSA-69: Fixed misplaced free in ocaml xc_vcpu_getaffinity stub. (CVE-2013-4370)\n\n - XSA-70: Fixed use-after-free in libxl_list_cpupool under memory pressure. (CVE-2013-4371)\n\n - XSA-71: xen: qemu disk backend (qdisk) resource leak.\n (CVE-2013-4375)\n\n - XSA-62: Fixed information leak on AVX and/or LWP capable CPUs. (CVE-2013-1442)\n\n - XSA-58: Page reference counting error due to XSA-45/CVE-2013-1918 fixes. Various bugs have also been fixed:. (CVE-2013-1432)\n\n - Boot failure with xen kernel in UEFI mode with error 'No memory for trampoline'. (bnc#833483)\n\n - Improvements to block-dmmd script. (bnc#828623)\n\n - MTU size on Dom0 gets reset when booting DomU with e1000 device. (bnc#840196)\n\n - In HP's UEFI x86_64 platform and with xen environment, in booting stage, xen hypervisor will panic.\n (bnc#833251)\n\n - Xen: migration broken from xsave-capable to xsave-incapable host. (bnc#833796)\n\n - In xen, 'shutdown -y 0 -h' cannot power off system.\n (bnc#834751)\n\n - In HP's UEFI x86_64 platform with xen environment, xen hypervisor will panic on multiple blades nPar.\n (bnc#839600)\n\n - vcpus not started after upgrading Dom0 from SLES 11 SP2 to SP3. (bnc#835896)\n\n - SLES 11 SP3 Xen security patch does not automatically update UEFI boot binary. (bnc#836239)\n\n - Failed to setup devices for vm instance when start multiple vms simultaneously. (bnc#824676)\n\n - SLES 9 SP4 guest fails to start after upgrading to SLES 11 SP3. (bnc#817799)\n\n - Various upstream fixes have been included.", "edition": 4, "reporter": "Tenable", "published": "2013-11-20T00:00:00", "title": "SuSE 11.2 / 11.3 Security Update : Xen (SAT Patch Numbers 8478 / 8479)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-2211", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2014-07-26T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:11:xen-tools", "p-cpe:/a:novell:suse_linux:11:xen-tools-domU", "p-cpe:/a:novell:suse_linux:11:xen-kmp-trace", "p-cpe:/a:novell:suse_linux:11:xen-libs-32bit", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:11:xen", "p-cpe:/a:novell:suse_linux:11:xen-doc-pdf", "p-cpe:/a:novell:suse_linux:11:xen-doc-html", "p-cpe:/a:novell:suse_linux:11:xen-kmp-pae", "p-cpe:/a:novell:suse_linux:11:xen-libs", "p-cpe:/a:novell:suse_linux:11:xen-kmp-default"], "id": "SUSE_11_XEN-201310-131029.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=70969", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(70969);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2014/07/26 00:30:55 $\");\n\n script_cve_id(\"CVE-2013-1432\", \"CVE-2013-1442\", \"CVE-2013-1918\", \"CVE-2013-2194\", \"CVE-2013-2195\", \"CVE-2013-2196\", \"CVE-2013-2211\", \"CVE-2013-4329\", \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\", \"CVE-2013-4416\");\n\n script_name(english:\"SuSE 11.2 / 11.3 Security Update : Xen (SAT Patch Numbers 8478 / 8479)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"XEN has been updated to version 4.2.3 c/s 26170, fixing various bugs\nand security issues.\n\n - XSA-72: Fixed ocaml xenstored that mishandled oversized\n message replies. (CVE-2013-4416)\n\n - XSA-63: Fixed information leaks through I/O instruction\n emulation. (CVE-2013-4355)\n\n - XSA-66: Fixed information leak through fbld instruction\n emulation. (CVE-2013-4361)\n\n - XSA-67: Fixed information leak through outs instruction\n emulation. (CVE-2013-4368)\n\n - XSA-68: Fixed possible null dereference when parsing vif\n ratelimiting info. (CVE-2013-4369)\n\n - XSA-69: Fixed misplaced free in ocaml\n xc_vcpu_getaffinity stub. (CVE-2013-4370)\n\n - XSA-70: Fixed use-after-free in libxl_list_cpupool under\n memory pressure. (CVE-2013-4371)\n\n - XSA-71: xen: qemu disk backend (qdisk) resource leak.\n (CVE-2013-4375)\n\n - XSA-62: Fixed information leak on AVX and/or LWP capable\n CPUs. (CVE-2013-1442)\n\n - XSA-58: Page reference counting error due to\n XSA-45/CVE-2013-1918 fixes. Various bugs have also been\n fixed:. (CVE-2013-1432)\n\n - Boot failure with xen kernel in UEFI mode with error 'No\n memory for trampoline'. (bnc#833483)\n\n - Improvements to block-dmmd script. (bnc#828623)\n\n - MTU size on Dom0 gets reset when booting DomU with e1000\n device. (bnc#840196)\n\n - In HP's UEFI x86_64 platform and with xen environment,\n in booting stage, xen hypervisor will panic.\n (bnc#833251)\n\n - Xen: migration broken from xsave-capable to\n xsave-incapable host. (bnc#833796)\n\n - In xen, 'shutdown -y 0 -h' cannot power off system.\n (bnc#834751)\n\n - In HP's UEFI x86_64 platform with xen environment, xen\n hypervisor will panic on multiple blades nPar.\n (bnc#839600)\n\n - vcpus not started after upgrading Dom0 from SLES 11 SP2\n to SP3. (bnc#835896)\n\n - SLES 11 SP3 Xen security patch does not automatically\n update UEFI boot binary. (bnc#836239)\n\n - Failed to setup devices for vm instance when start\n multiple vms simultaneously. (bnc#824676)\n\n - SLES 9 SP4 guest fails to start after upgrading to SLES\n 11 SP3. (bnc#817799)\n\n - Various upstream fixes have been included.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=803712\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=817799\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=823011\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=823608\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=823786\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=824676\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=826882\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=828623\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=833251\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=833483\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=833796\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=834751\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=835896\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=836239\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=839596\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=839600\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=839618\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=840196\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=840592\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=841766\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842511\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842513\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842514\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=842515\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=845520\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1432.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1442.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-1918.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-2194.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-2195.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-2196.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-2211.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4329.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4355.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4361.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4368.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4369.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4370.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4371.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4375.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2013-4416.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Apply SAT patch number 8478 / 8479 as appropriate.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:M/Au:S/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-doc-html\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-doc-pdf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-kmp-default\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-kmp-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-kmp-trace\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-libs-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:xen-tools-domU\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/10/29\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/11/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"i586\", reference:\"xen-kmp-default-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"i586\", reference:\"xen-kmp-pae-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"i586\", reference:\"xen-kmp-trace-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"i586\", reference:\"xen-libs-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"i586\", reference:\"xen-tools-domU-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-doc-html-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-doc-pdf-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-kmp-default-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-kmp-trace-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-libs-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-libs-32bit-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-tools-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:2, cpu:\"x86_64\", reference:\"xen-tools-domU-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"i586\", reference:\"xen-kmp-default-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"i586\", reference:\"xen-kmp-pae-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"i586\", reference:\"xen-libs-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"i586\", reference:\"xen-tools-domU-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-doc-html-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-doc-pdf-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-kmp-default-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-libs-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-libs-32bit-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-tools-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"xen-tools-domU-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"i586\", reference:\"xen-kmp-default-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"i586\", reference:\"xen-kmp-pae-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"i586\", reference:\"xen-kmp-trace-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"i586\", reference:\"xen-libs-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"i586\", reference:\"xen-tools-domU-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-doc-html-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-doc-pdf-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-kmp-default-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-kmp-trace-4.1.6_02_3.0.93_0.5-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-libs-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-libs-32bit-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-tools-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:2, cpu:\"x86_64\", reference:\"xen-tools-domU-4.1.6_02-0.5.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"i586\", reference:\"xen-kmp-default-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"i586\", reference:\"xen-kmp-pae-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"i586\", reference:\"xen-libs-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"i586\", reference:\"xen-tools-domU-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-doc-html-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-doc-pdf-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-kmp-default-4.2.3_02_3.0.93_0.8-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-libs-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-libs-32bit-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-tools-4.2.3_02-0.7.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:3, cpu:\"x86_64\", reference:\"xen-tools-domU-4.2.3_02-0.7.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.4, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:09:31", "references": ["https://security.gentoo.org/glsa/201407-03"], "pluginID": "76544", "description": "The remote host is affected by the vulnerability described in GLSA-201407-03 (Xen: Multiple Vunlerabilities)\n\n Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details.\n Impact :\n\n A remote attacker can utilize multiple vectors to execute arbitrary code, cause Denial of Service, or gain access to data on the host.\n Workaround :\n\n There is no known workaround at this time.", "edition": 4, "reporter": "Tenable", "published": "2014-07-17T00:00:00", "title": "GLSA-201407-03 : Xen: Multiple Vunlerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-1891", "CVE-2014-4021", "CVE-2014-1642", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2014-1895", "CVE-2013-4356", "CVE-2014-1894", "CVE-2013-4554", "CVE-2014-1892", "CVE-2013-4416", "CVE-2013-4361", "CVE-2014-3124", "CVE-2013-6400", "CVE-2014-1896", "CVE-2013-4553", "CVE-2013-6375", "CVE-2014-2599", "CVE-2014-1893", "CVE-2013-4369", "CVE-2013-6885", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-4551", "CVE-2014-1666", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2015-04-13T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:xen", "p-cpe:/a:gentoo:linux:xen-pvgrub", "p-cpe:/a:gentoo:linux:xen-tools"], "id": "GENTOO_GLSA-201407-03.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=76544", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 201407-03.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(76544);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2015/04/13 14:27:08 $\");\n\n script_cve_id(\"CVE-2013-1442\", \"CVE-2013-4329\", \"CVE-2013-4355\", \"CVE-2013-4356\", \"CVE-2013-4361\", \"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\", \"CVE-2013-4416\", \"CVE-2013-4494\", \"CVE-2013-4551\", \"CVE-2013-4553\", \"CVE-2013-4554\", \"CVE-2013-6375\", \"CVE-2013-6400\", \"CVE-2013-6885\", \"CVE-2014-1642\", \"CVE-2014-1666\", \"CVE-2014-1891\", \"CVE-2014-1892\", \"CVE-2014-1893\", \"CVE-2014-1894\", \"CVE-2014-1895\", \"CVE-2014-1896\", \"CVE-2014-2599\", \"CVE-2014-3124\", \"CVE-2014-4021\");\n script_bugtraq_id(62307, 62630, 62708, 62709, 62710, 62930, 62931, 62932, 62934, 62935, 63404, 63494, 63625, 63830, 63931, 63933, 63983, 64195, 65097, 65125, 65414, 65419, 65424, 66407, 67113, 68070);\n script_xref(name:\"GLSA\", value:\"201407-03\");\n\n script_name(english:\"GLSA-201407-03 : Xen: Multiple Vunlerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-201407-03\n(Xen: Multiple Vunlerabilities)\n\n Multiple vulnerabilities have been discovered in Xen. Please review the\n CVE identifiers referenced below for details.\n \nImpact :\n\n A remote attacker can utilize multiple vectors to execute arbitrary\n code, cause Denial of Service, or gain access to data on the host.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/201407-03\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All Xen 4.3 users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=app-emulations/xen-4.3.2-r2'\n All Xen 4.2 users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=app-emulations/xen-4.2.4-r2'\n All xen-tools 4.3 users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose\n '>=app-emulations/xen-tools-4.3.2-r2'\n All xen-tools 4.2 users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose\n '>=app-emulations/xen-tools-4.2.4-r2'\n All Xen PVGRUB 4.3 users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=app-emulations/xen-pvgrub-4.3.2'\n All Xen PVGRUB 4.2 users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=app-emulations/xen-pvgrub-4.2.4'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:xen\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:xen-pvgrub\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:xen-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/07/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/07/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"app-emulations/xen\", unaffected:make_list(\"ge 4.3.2-r4\", \"rge 4.2.4-r4\"), vulnerable:make_list(\"lt 4.3.2-r4\"))) flag++;\nif (qpkg_check(package:\"app-emulations/xen-tools\", unaffected:make_list(\"ge 4.3.2-r5\", \"rge 4.2.4-r6\"), vulnerable:make_list(\"lt 4.3.2-r5\"))) flag++;\nif (qpkg_check(package:\"app-emulations/xen-pvgrub\", unaffected:make_list(\"rge 4.3.2\", \"rge 4.2.4\"), vulnerable:make_list(\"lt 4.3.2\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"Xen\");\n}\n", "cvss": {"score": 8.3, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2018-09-01T23:57:18", "references": ["2013-22325", "https://lists.fedoraproject.org/pipermail/package-announce/2013-December/123208.html"], "pluginID": "1361412562310867123", "description": "Check for the Version of xen", "edition": 3, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-12-17T00:00:00", "title": "Fedora Update for xen FEDORA-2013-22325", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4554", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4553", "CVE-2013-6375", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-4551", "CVE-2013-2211", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310867123", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867123", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-22325\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867123\");\n script_version(\"$Revision: 9353 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:14:20 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-17 11:45:01 +0530 (Tue, 17 Dec 2013)\");\n script_cve_id(\"CVE-2013-4553\", \"CVE-2013-4554\", \"CVE-2013-6375\", \"CVE-2013-4551\",\n \"CVE-2013-4494\", \"CVE-2013-4416\", \"CVE-2013-4368\", \"CVE-2013-4369\",\n \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\", \"CVE-2013-4355\",\n \"CVE-2013-4361\", \"CVE-2013-1442\", \"CVE-2013-4329\", \"CVE-2013-1918\",\n \"CVE-2013-1432\", \"CVE-2013-2211\", \"CVE-2013-2194\", \"CVE-2013-2195\",\n \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-22325\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-22325\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-December/123208.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~10.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.9, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-26T11:09:38", "references": ["2013-21041", "https://lists.fedoraproject.org/pipermail/package-announce/2013-November/122294.html"], "pluginID": "867075", "description": "Check for the Version of xen", "edition": 3, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-21T00:00:00", "title": "Fedora Update for xen FEDORA-2013-21041", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-4551", "CVE-2013-2211", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-01-26T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=867075", "id": "OPENVAS:867075", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-21041\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867075);\n script_version(\"$Revision: 8542 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-26 07:57:28 +0100 (Fri, 26 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-21 10:41:55 +0530 (Thu, 21 Nov 2013)\");\n script_cve_id(\"CVE-2013-4551\", \"CVE-2013-4494\", \"CVE-2013-4416\", \"CVE-2013-4368\",\n \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\",\n \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-1442\", \"CVE-2013-4329\",\n \"CVE-2013-1918\", \"CVE-2013-1432\", \"CVE-2013-2211\", \"CVE-2013-2194\",\n \"CVE-2013-2195\", \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.4\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-21041\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-21041\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-November/122294.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~8.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.4, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-23T13:09:37", "references": ["2013-20555", "https://lists.fedoraproject.org/pipermail/package-announce/2013-November/121315.html"], "pluginID": "867057", "description": "Check for the Version of xen", "edition": 3, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-18T00:00:00", "title": "Fedora Update for xen FEDORA-2013-20555", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-2211", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-01-23T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=867057", "id": "OPENVAS:867057", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-20555\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867057);\n script_version(\"$Revision: 8494 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-23 07:57:55 +0100 (Tue, 23 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-18 12:25:42 +0530 (Mon, 18 Nov 2013)\");\n script_cve_id(\"CVE-2013-4494\", \"CVE-2013-4416\", \"CVE-2013-4368\", \"CVE-2013-4369\",\n \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\", \"CVE-2013-4355\",\n \"CVE-2013-4361\", \"CVE-2013-1442\", \"CVE-2013-4329\", \"CVE-2013-1918\",\n \"CVE-2013-1432\", \"CVE-2013-2211\", \"CVE-2013-2194\", \"CVE-2013-2195\",\n \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.4\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-20555\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-20555\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-November/121315.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~7.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.4, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-25T10:52:09", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119531.html", "2013-19048"], "pluginID": "867005", "description": "Check for the Version of xen", "edition": 2, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-10-23T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Fedora Update for xen FEDORA-2013-19048", "type": "openvas", "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-2211", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=867005", "id": "OPENVAS:867005", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-19048\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867005);\n script_version(\"$Revision: 6628 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:32:47 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2013-10-23 10:27:47 +0530 (Wed, 23 Oct 2013)\");\n script_cve_id(\"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\",\n \"CVE-2013-4375\", \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-1442\",\n \"CVE-2013-4329\", \"CVE-2013-1918\", \"CVE-2013-1432\", \"CVE-2013-2211\",\n \"CVE-2013-2194\", \"CVE-2013-2195\", \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.4\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-19048\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-19048\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119531.html\");\n script_summary(\"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~4.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.4, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-23T13:09:49", "references": ["2013-22325", "https://lists.fedoraproject.org/pipermail/package-announce/2013-December/123208.html"], "pluginID": "867123", "description": "Check for the Version of xen", "edition": 3, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-12-17T00:00:00", "title": "Fedora Update for xen FEDORA-2013-22325", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4554", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4553", "CVE-2013-6375", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-4551", "CVE-2013-2211", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-01-23T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=867123", "id": "OPENVAS:867123", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-22325\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(867123);\n script_version(\"$Revision: 8494 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-23 07:57:55 +0100 (Tue, 23 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-17 11:45:01 +0530 (Tue, 17 Dec 2013)\");\n script_cve_id(\"CVE-2013-4553\", \"CVE-2013-4554\", \"CVE-2013-6375\", \"CVE-2013-4551\",\n \"CVE-2013-4494\", \"CVE-2013-4416\", \"CVE-2013-4368\", \"CVE-2013-4369\",\n \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\", \"CVE-2013-4355\",\n \"CVE-2013-4361\", \"CVE-2013-1442\", \"CVE-2013-4329\", \"CVE-2013-1918\",\n \"CVE-2013-1432\", \"CVE-2013-2211\", \"CVE-2013-2194\", \"CVE-2013-2195\",\n \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-22325\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-22325\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-December/123208.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~10.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.9, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:56:44", "references": ["2013-21041", "https://lists.fedoraproject.org/pipermail/package-announce/2013-November/122294.html"], "pluginID": "1361412562310867075", "description": "Check for the Version of xen", "edition": 3, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-21T00:00:00", "title": "Fedora Update for xen FEDORA-2013-21041", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-4551", "CVE-2013-2211", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310867075", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867075", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-21041\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867075\");\n script_version(\"$Revision: 9353 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:14:20 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-21 10:41:55 +0530 (Thu, 21 Nov 2013)\");\n script_cve_id(\"CVE-2013-4551\", \"CVE-2013-4494\", \"CVE-2013-4416\", \"CVE-2013-4368\",\n \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\",\n \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-1442\", \"CVE-2013-4329\",\n \"CVE-2013-1918\", \"CVE-2013-1432\", \"CVE-2013-2211\", \"CVE-2013-2194\",\n \"CVE-2013-2195\", \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.4\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-21041\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-21041\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-November/122294.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~8.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.4, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:55:56", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119531.html", "2013-19048"], "pluginID": "1361412562310867005", "description": "Check for the Version of xen", "edition": 4, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-10-23T00:00:00", "title": "Fedora Update for xen FEDORA-2013-19048", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-2211", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310867005", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867005", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-19048\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867005\");\n script_version(\"$Revision: 9372 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:56:37 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-10-23 10:27:47 +0530 (Wed, 23 Oct 2013)\");\n script_cve_id(\"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\",\n \"CVE-2013-4375\", \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-1442\",\n \"CVE-2013-4329\", \"CVE-2013-1918\", \"CVE-2013-1432\", \"CVE-2013-2211\",\n \"CVE-2013-2194\", \"CVE-2013-2195\", \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.4\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-19048\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-19048\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-October/119531.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~4.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.4, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:57:17", "references": ["2013-20555", "https://lists.fedoraproject.org/pipermail/package-announce/2013-November/121315.html"], "pluginID": "1361412562310867057", "description": "Check for the Version of xen", "edition": 3, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-11-18T00:00:00", "title": "Fedora Update for xen FEDORA-2013-20555", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4369", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-2211", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310867057", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867057", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-20555\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867057\");\n script_version(\"$Revision: 9353 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:14:20 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-18 12:25:42 +0530 (Mon, 18 Nov 2013)\");\n script_cve_id(\"CVE-2013-4494\", \"CVE-2013-4416\", \"CVE-2013-4368\", \"CVE-2013-4369\",\n \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\", \"CVE-2013-4355\",\n \"CVE-2013-4361\", \"CVE-2013-1442\", \"CVE-2013-4329\", \"CVE-2013-1918\",\n \"CVE-2013-1432\", \"CVE-2013-2211\", \"CVE-2013-2194\", \"CVE-2013-2195\",\n \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.4\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:S/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-20555\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-20555\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-November/121315.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~7.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.4, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:SINGLE_INSTANCE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:55:47", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2013-December/124195.html", "2013-22888"], "pluginID": "1361412562310867166", "description": "Check for the Version of xen", "edition": 4, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-12-17T00:00:00", "title": "Fedora Update for xen FEDORA-2013-22888", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4554", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-4553", "CVE-2013-6375", "CVE-2013-4369", "CVE-2013-6885", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-4551", "CVE-2013-2211", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310867166", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867166", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-22888\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867166\");\n script_version(\"$Revision: 9372 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:56:37 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-17 11:48:57 +0530 (Tue, 17 Dec 2013)\");\n script_cve_id(\"CVE-2013-6885\", \"CVE-2013-4553\", \"CVE-2013-4554\", \"CVE-2013-6375\",\n \"CVE-2013-4551\", \"CVE-2013-4494\", \"CVE-2013-4416\", \"CVE-2013-4368\",\n \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\", \"CVE-2013-4375\",\n \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-1442\", \"CVE-2013-4329\",\n \"CVE-2013-1918\", \"CVE-2013-1432\", \"CVE-2013-2211\", \"CVE-2013-2194\",\n \"CVE-2013-2195\", \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-22888\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-22888\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-December/124195.html\");\n script_tag(name:\"summary\", value:\"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~11.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.9, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:57:20", "references": ["2013-23457", "https://lists.fedoraproject.org/pipermail/package-announce/2013-December/125111.html"], "pluginID": "1361412562310867199", "description": "Check for the Version of xen", "edition": 3, "reporter": "Copyright (C) 2013 Greenbone Networks GmbH", "published": "2013-12-30T00:00:00", "title": "Fedora Update for xen FEDORA-2013-23457", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2013-2196", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2013-4554", "CVE-2013-4416", "CVE-2013-1432", "CVE-2013-4361", "CVE-2013-2194", "CVE-2013-1918", "CVE-2013-6400", "CVE-2013-4553", "CVE-2013-6375", "CVE-2013-4369", "CVE-2013-6885", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-2195", "CVE-2013-4551", "CVE-2013-2211", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310867199", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310867199", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for xen FEDORA-2013-23457\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.867199\");\n script_version(\"$Revision: 9353 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:14:20 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-12-30 11:04:59 +0530 (Mon, 30 Dec 2013)\");\n script_cve_id(\"CVE-2013-6400\", \"CVE-2013-6885\", \"CVE-2013-4553\", \"CVE-2013-4554\",\n \"CVE-2013-6375\", \"CVE-2013-4551\", \"CVE-2013-4494\", \"CVE-2013-4416\",\n \"CVE-2013-4368\", \"CVE-2013-4369\", \"CVE-2013-4370\", \"CVE-2013-4371\",\n \"CVE-2013-4375\", \"CVE-2013-4355\", \"CVE-2013-4361\", \"CVE-2013-1442\",\n \"CVE-2013-4329\", \"CVE-2013-1918\", \"CVE-2013-1432\", \"CVE-2013-2211\",\n \"CVE-2013-2194\", \"CVE-2013-2195\", \"CVE-2013-2196\");\n script_tag(name:\"cvss_base\", value:\"7.9\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Fedora Update for xen FEDORA-2013-23457\");\n\n tag_insight = \"This package contains the XenD daemon and xm command line\ntools, needed to manage virtual machines running under the\nXen hypervisor\n\";\n\n tag_affected = \"xen on Fedora 19\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"FEDORA\", value: \"2013-23457\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2013-December/125111.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of xen\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC19\")\n{\n\n if ((res = isrpmvuln(pkg:\"xen\", rpm:\"xen~4.2.3~12.fc19\", rls:\"FC19\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.9, "vector": "AV:ADJACENT_NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:32", "references": ["http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4369", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4370", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1893", "https://bugs.gentoo.org/show_bug.cgi?id=486354", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1666", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6400", "https://bugs.gentoo.org/show_bug.cgi?id=505714", "https://bugs.gentoo.org/show_bug.cgi?id=509054", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6375", "https://bugs.gentoo.org/show_bug.cgi?id=499054", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1891", "https://bugs.gentoo.org/show_bug.cgi?id=497086", "https://bugs.gentoo.org/show_bug.cgi?id=513824", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4551", "https://bugs.gentoo.org/show_bug.cgi?id=501080", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1895", "https://bugs.gentoo.org/show_bug.cgi?id=500528", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1896", "https://bugs.gentoo.org/show_bug.cgi?id=501906", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4494", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-3124", "https://bugs.gentoo.org/show_bug.cgi?id=440768", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1894", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4375", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4356", "https://bugs.gentoo.org/show_bug.cgi?id=484478", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4361", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4554", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-4021", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-1442", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1642", "https://bugs.gentoo.org/show_bug.cgi?id=497084", "https://bugs.gentoo.org/show_bug.cgi?id=500530", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4329", "https://bugs.gentoo.org/show_bug.cgi?id=497082", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-2599", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4371", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4355", "https://bugs.gentoo.org/show_bug.cgi?id=500536", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4368", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-6885", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-1892", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4553", "https://bugs.gentoo.org/show_bug.cgi?id=499124", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4416"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "4.3.2-r5", "arch": "all", "packageFilename": "UNKNOWN", "packageName": "app-emulations/xen-tools", "operator": "lt"}, {"OS": "Gentoo", "OSVersion": "any", "packageVersion": "4.3.2-r4", "arch": "all", "packageFilename": "UNKNOWN", "packageName": "app-emulations/xen", "operator": "lt"}, {"OS": "Gentoo", "OSVersion": "any", "packageVersion": "4.3.2", "arch": "all", "packageFilename": "UNKNOWN", "packageName": "app-emulations/xen-pvgrub", "operator": "lt"}], "edition": 1, "description": "### Background\n\nXen is a bare-metal hypervisor.\n\n### Description\n\nMultiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA remote attacker can utilize multiple vectors to execute arbitrary code, cause Denial of Service, or gain access to data on the host. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll Xen 4.3 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=app-emulations/xen-4.3.2-r2\"\n \n\nAll Xen 4.2 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=app-emulations/xen-4.2.4-r2\"\n \n\nAll xen-tools 4.3 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose\n \">=app-emulations/xen-tools-4.3.2-r2\"\n \n\nAll xen-tools 4.2 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose\n \">=app-emulations/xen-tools-4.2.4-r2\"\n \n\nAll Xen PVGRUB 4.3 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=app-emulations/xen-pvgrub-4.3.2\"\n \n\nAll Xen PVGRUB 4.2 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=app-emulations/xen-pvgrub-4.2.4\"", "reporter": "Gentoo Foundation", "published": "2014-07-16T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "gentoo", "title": "Xen: Multiple Vunlerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2014-1891", "CVE-2014-4021", "CVE-2014-1642", "CVE-2013-4368", "CVE-2013-4370", "CVE-2013-4329", "CVE-2014-1895", "CVE-2013-4356", "CVE-2014-1894", "CVE-2013-4554", "CVE-2014-1892", "CVE-2013-4416", "CVE-2013-4361", "CVE-2014-3124", "CVE-2013-6400", "CVE-2014-1896", "CVE-2013-4553", "CVE-2013-6375", "CVE-2014-2599", "CVE-2014-1893", "CVE-2013-4369", "CVE-2013-6885", "CVE-2013-4371", "CVE-2013-1442", "CVE-2013-4551", "CVE-2014-1666", "CVE-2013-4494", "CVE-2013-4355", "CVE-2013-4375"], "modified": "2014-07-16T00:00:00", "id": "GLSA-201407-03", "href": "https://security.gentoo.org/glsa/201407-03", "cvss": {"score": 8.3, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
