Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2020-5782.NASLHistoryJul 30, 2020 - 12:00 a.m.
Oracle Linux 7 : grub2 (ELSA-2020-5782)
2020-07-3000:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
40
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
7.2 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.9%
Description of changes:
[2.02-81.0.3]
- Fix CVE-2020-10713, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707 [Orabug: 31225072]
- Update signing certificate for efi binaries
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Oracle Linux Security Advisory ELSA-2020-5782.
#
include('compat.inc');
if (description)
{
script_id(139164);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/02/27");
script_cve_id(
"CVE-2020-10713",
"CVE-2020-14308",
"CVE-2020-14309",
"CVE-2020-14310",
"CVE-2020-14311",
"CVE-2020-15705",
"CVE-2020-15706",
"CVE-2020-15707"
);
script_xref(name:"IAVA", value:"2020-A-0349");
script_xref(name:"CEA-ID", value:"CEA-2020-0061");
script_name(english:"Oracle Linux 7 : grub2 (ELSA-2020-5782)");
script_set_attribute(attribute:"synopsis", value:
"The remote Oracle Linux host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"Description of changes:
[2.02-81.0.3]
- Fix CVE-2020-10713, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310,
CVE-2020-14311,
CVE-2020-15705, CVE-2020-15706, CVE-2020-15707 [Orabug: 31225072]
- Update signing certificate for efi binaries");
script_set_attribute(attribute:"see_also", value:"https://oss.oracle.com/pipermail/el-errata/2020-July/010163.html");
script_set_attribute(attribute:"solution", value:
"Update the affected grub2 packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-14309");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2020-10713");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/07/29");
script_set_attribute(attribute:"patch_publication_date", value:"2020/07/29");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/07/30");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-efi-ia32");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-efi-ia32-cdboot");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-efi-ia32-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-efi-x64");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-efi-x64-cdboot");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-efi-x64-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-pc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-pc-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-tools-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:grub2-tools-minimal");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:7");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"II");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Oracle Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux");
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux");
os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 7", "Oracle Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu);
if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu);
flag = 0;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-common-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-efi-ia32-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-efi-ia32-cdboot-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-efi-ia32-modules-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-efi-x64-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-efi-x64-cdboot-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-efi-x64-modules-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-pc-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-pc-modules-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-tools-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-tools-extra-2.02-0.81.0.3.el7")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"grub2-tools-minimal-2.02-0.81.0.3.el7")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "grub2 / grub2-common / grub2-efi-ia32 / grub2-efi-ia32-cdboot / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | linux | grub2 | p-cpe:/a:oracle:linux:grub2 |
| oracle | linux | grub2-common | p-cpe:/a:oracle:linux:grub2-common |
| oracle | linux | grub2-efi-ia32 | p-cpe:/a:oracle:linux:grub2-efi-ia32 |
| oracle | linux | grub2-efi-ia32-cdboot | p-cpe:/a:oracle:linux:grub2-efi-ia32-cdboot |
| oracle | linux | grub2-efi-ia32-modules | p-cpe:/a:oracle:linux:grub2-efi-ia32-modules |
| oracle | linux | grub2-efi-x64 | p-cpe:/a:oracle:linux:grub2-efi-x64 |
| oracle | linux | grub2-efi-x64-cdboot | p-cpe:/a:oracle:linux:grub2-efi-x64-cdboot |
| oracle | linux | grub2-efi-x64-modules | p-cpe:/a:oracle:linux:grub2-efi-x64-modules |
| oracle | linux | grub2-pc | p-cpe:/a:oracle:linux:grub2-pc |
| oracle | linux | grub2-pc-modules | p-cpe:/a:oracle:linux:grub2-pc-modules |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10713
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14308
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14309
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14310
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14311
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15705
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15706
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15707
oss.oracle.com/pipermail/el-errata/2020-July/010163.html
Related
nessus
nessus
Oracle Linux 8 : grub2 (ELSA-2020-5786)
2020-07-30 00:00:00
Photon OS 1.0: Grub2 PHSA-2020-1.0-0311
2020-08-01 00:00:00
oraclelinux
oraclelinux
grub2 security update
2020-07-29 00:00:00
grub2 security update
2020-07-29 00:00:00
grub2 security update
2020-07-29 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0311
2020-07-30 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0267
2020-07-30 00:00:00
Important Photon OS Security Update - PHSA-2020-0120
2020-07-23 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4432-1)
2020-07-30 00:00:00
CentOS: Security Advisory for mokutil (CESA-2020:3217)
2020-07-30 00:00:00
Fedora: Security Advisory for grub2 (FEDORA-2020-e19b87f4f5)
2020-09-27 00:00:00
redhat
redhat
(RHSA-2020:3223) Moderate: grub2 security update
2020-07-29 19:04:21
(RHSA-2020:3274) Moderate: grub2 security and bug fix update
2020-08-03 10:37:05
(RHSA-2020:3227) Moderate: grub2 security update
2020-07-29 19:56:15
ubuntu
ubuntu
GRUB 2 vulnerabilities
2020-07-29 00:00:00
GRUB2 regression
2020-08-04 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: grub2-2.02-110.fc31
2020-09-27 01:05:37
[SECURITY] Fedora 32 Update: grub2-2.04-22.fc32
2020-09-14 13:26:52
qualysblog
qualysblog
centos
centos
grub2, mokutil, shim security update
2020-07-30 00:08:50
suse
suse
Security update for grub2 (important)
2020-08-08 00:00:00
Security update for grub2 (important)
2020-08-08 00:00:00
Security update for grub2 (important)
2020-08-29 00:00:00
osv
osv
grub2 - security update
2020-07-29 00:00:00
CVE-2020-14311
2020-07-31 22:15:11
CVE-2020-14308
2020-07-29 20:15:12
debian
debian
[SECURITY] [DSA 4735-1] grub2 security update
2020-07-29 16:59:52
f5
f5
K48187630 : Multiple grub2 vulnerabilities
2021-03-18 00:00:00
K42232641 : GRUB2 vulnerability CVE-2020-10713
2020-08-07 00:00:00
mageia
mageia
Updated grub2 packages fix security vulnerabilities
2021-07-09 01:43:19
redos
redos
ROS-20220920-01
2022-09-20 00:00:00
hp
hp
HPSBHF03678 rev. 2 - GRUB2 Bootloader Arbitrary Code Execution
2020-07-25 00:00:00
gentoo
gentoo
GRUB: Multiple vulnerabilities
2021-04-30 00:00:00
mscve
mscve
Microsoft Guidance for Addressing Security Feature Bypass in GRUB
2020-07-29 07:00:00
ibm
ibm
ics
ics
Hitachi Energy APM Edge (Update A)
2022-10-18 12:00:00
redhatcve
redhatcve
cbl_mariner
cbl_mariner
CVE-2020-14308 affecting package grub2 2.06~rc1-10
2021-05-06 23:56:52
CVE-2020-14310 affecting package grub2 for versions less than 2.06~rc1-7
2022-04-26 20:17:11
CVE-2020-14308 affecting package grub2 for versions less than 2.06~rc1-7
2022-04-26 20:17:11
prion
prion
cve
cve
alpinelinux
alpinelinux
nvd
nvd
debiancve
debiancve
ubuntucve
ubuntucve
cvelist
cvelist
CVE-2020-15707 GRUB2 contained integer overflows when handling the initrd command, leading to a heap-based buffer overflow.
2020-07-29 00:00:00
CVE-2020-14310
2020-07-31 20:55:55
CVE-2020-14308
2020-07-29 19:03:41
veracode
veracode
Denial Of Service (DoS)
2020-07-30 02:02:33
Denial Of Service (DoS)
2020-07-30 02:02:32
Denial Of Service (DoS)
2020-07-30 02:02:35
lenovo
lenovo
GRUB2 Vulnerability – AKA
2020-07-30 15:15:08
checkpoint_security
checkpoint_security
cert
cert
GRUB2 bootloader is vulnerable to buffer overflow
2020-07-29 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
7.2 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.9%
Related for ORACLELINUX_ELSA-2020-5782.NASL