CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
0.4%
Update to official Linux 2.6.22.6 (previously 2.6.22.6-rc1):
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6
Update to Linux 2.6.22.7:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.7
USB: three trivial fixes
futex: fix compat list traversal
Restore ofpath functionality (IDE_PROC_FS=y)(#289931)
add option to disable DMA on libata PATA devices (libata.pata_dma, see kernel-parameters.txt)
fix DMA on ATAPI devices with it821x
fix cable detection on pata_via
fix vmware’s broken SCSI device emulation
fix init of huawei 220 modem
LVM: fix hang and lockups during snapshot (#269541)
net: fix oops with zero-length packet (#253290)
CFS scheduler updates
utrace update (#248532, #267161, #284311)
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory 2007-712.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(26116);
script_version("1.14");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2007-4573");
script_xref(name:"FEDORA", value:"2007-712");
script_name(english:"Fedora Core 6 : kernel-2.6.22.7-57.fc6 (2007-712)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora Core host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Update to official Linux 2.6.22.6 (previously 2.6.22.6-rc1):
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6
Update to Linux 2.6.22.7:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.7
- USB: three trivial fixes
- futex: fix compat list traversal
- Restore ofpath functionality (IDE_PROC_FS=y)(#289931)
- add option to disable DMA on libata PATA devices
(libata.pata_dma, see kernel-parameters.txt)
- fix DMA on ATAPI devices with it821x
- fix cable detection on pata_via
- fix vmware's broken SCSI device emulation
- fix init of huawei 220 modem
- LVM: fix hang and lockups during snapshot (#269541)
- net: fix oops with zero-length packet (#253290)
- CFS scheduler updates
- utrace update (#248532, #267161, #284311)
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
# http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.6
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?e123602e"
);
# http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.7
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?b283394b"
);
# https://lists.fedoraproject.org/pipermail/package-announce/2007-September/003880.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?c5f91e78"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_cwe_id(264);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-debug-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debug-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debuginfo-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-headers");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:6");
script_set_attribute(attribute:"patch_publication_date", value:"2007/09/24");
script_set_attribute(attribute:"plugin_publication_date", value:"2007/09/25");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 6.x", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC6", reference:"kernel-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-debug-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-debug-debuginfo-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-debug-devel-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-debuginfo-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-devel-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debug-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debug-debuginfo-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debug-devel-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debuginfo-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debuginfo-common-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-devel-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-doc-2.6.22.7-57.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-headers-2.6.22.7-57.fc6")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-PAE / kernel-PAE-debug / kernel-PAE-debug-debuginfo / etc");
}