Lucene search
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLEVM_OVMSA-2018-0247.NASLHistoryAug 16, 2018 - 12:00 a.m.
OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0247) (Foreshadow)
2018-08-1600:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21
4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
0.002 Low
EPSS
Percentile
64.6%
The remote OracleVM system is missing necessary patches to address critical security updates : please see Oracle VM Security Advisory OVMSA-2018-0247 for details.
#
# (C) Tenable Network Security, Inc.
#
# The package checks in this plugin were extracted from OracleVM
# Security Advisory OVMSA-2018-0247.
#
include("compat.inc");
if (description)
{
script_id(111773);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/03/08");
script_cve_id("CVE-2017-18344", "CVE-2018-3620", "CVE-2018-3646");
script_name(english:"OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0247) (Foreshadow)");
script_summary(english:"Checks the RPM output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote OracleVM host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"The remote OracleVM system is missing necessary patches to address
critical security updates : please see Oracle VM Security Advisory
OVMSA-2018-0247 for details."
);
# https://oss.oracle.com/pipermail/oraclevm-errata/2018-August/000881.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?3b153813"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected kernel-uek / kernel-uek-firmware packages."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
script_set_attribute(attribute:"canvas_package", value:'CANVAS');
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:vm:kernel-uek");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:vm:kernel-uek-firmware");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:vm_server:3.4");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/07/26");
script_set_attribute(attribute:"patch_publication_date", value:"2018/08/15");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/08/16");
script_set_attribute(attribute:"in_the_news", value:"true");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"OracleVM Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/OracleVM/release", "Host/OracleVM/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/OracleVM/release");
if (isnull(release) || "OVS" >!< release) audit(AUDIT_OS_NOT, "OracleVM");
if (! preg(pattern:"^OVS" + "3\.4" + "(\.[0-9]|$)", string:release)) audit(AUDIT_OS_NOT, "OracleVM 3.4", "OracleVM " + release);
if (!get_kb_item("Host/OracleVM/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "OracleVM", cpu);
if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu);
flag = 0;
if (rpm_check(release:"OVS3.4", reference:"kernel-uek-4.1.12-124.18.5.el6uek")) flag++;
if (rpm_check(release:"OVS3.4", reference:"kernel-uek-firmware-4.1.12-124.18.5.el6uek")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel-uek / kernel-uek-firmware");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | vm | kernel-uek | p-cpe:/a:oracle:vm:kernel-uek |
| oracle | vm | kernel-uek-firmware | p-cpe:/a:oracle:vm:kernel-uek-firmware |
| oracle | vm_server | 3.4 | cpe:/o:oracle:vm_server:3.4 |
Related
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-08-14 00:00:00
Unbreakable Enterprise kernel security update
2018-09-13 00:00:00
Unbreakable Enterprise kernel security update
2018-09-06 00:00:00
nessus
nessus
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4196)
2018-08-15 00:00:00
Fedora 27 : kernel / kernel-headers (2018-1c80fea1cd) (Foreshadow)
2018-08-16 00:00:00
OracleVM 3.4 : xen (OVMSA-2018-0251) (Foreshadow)
2018-08-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3742-3)
2022-08-26 00:00:00
Debian: Security Advisory (DSA-4279-1)
2018-08-19 00:00:00
Fedora Update for kernel-headers FEDORA-2018-f8cba144ae
2018-08-19 00:00:00
redhat
redhat
(RHSA-2018:2602) Important: kernel security update
2018-08-29 18:04:28
(RHSA-2018:2389) Important: kernel security update
2018-08-14 18:50:42
(RHSA-2018:2603) Important: kernel security update
2018-08-29 18:05:21
debian
debian
[SECURITY] [DSA 4274-1] xen security update
2018-08-16 20:47:43
[SECURITY] [DSA 4279-1] linux security update
2018-08-20 11:44:32
[SECURITY] [DLA 1481-1] linux-4.9 security update
2018-08-28 17:10:51
osv
osv
linux - security update
2018-08-20 00:00:00
linux-4.9 - security update
2018-08-28 00:00:00
CVE-2017-18344
2018-07-26 19:29:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-18:09.l1tf
2018-08-14 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2018-08-14 00:00:00
Linux kernel (Trusty HWE) regressions
2018-08-21 00:00:00
Linux kernel vulnerabilities
2018-11-15 00:00:00
xen
xen
L1 Terminal Fault speculative side channel
2018-08-14 17:15:00
fedora
fedora
[SECURITY] Fedora 27 Update: kernel-headers-4.17.14-3.fc27
2018-08-16 07:24:56
[SECURITY] Fedora 28 Update: kernel-headers-4.17.14-3.fc28
2018-08-16 08:08:45
ibm
ibm
freebsd
freebsd
FreeBSD -- L1 Terminal Fault (L1TF) Kernel Information Disclosure
2018-08-14 00:00:00
redhatcve
redhatcve
f5
f5
K70675920 : August 2018 Intel security vulnerability announcement
2018-08-15 00:00:00
K07020416 : Linux kernel vulnerability CVE-2017-18344
2020-12-08 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2018-08-19 14:24:54
Updated kernel packages fix security vulnerabilities
2018-08-19 14:24:54
Updated microcode packages fix security vulnerabilities
2018-08-19 14:24:54
intel
intel
Q3 2018 Speculative Execution Side Channel Update
2021-05-11 00:00:00
thn
thn
Foreshadow Attacks — 3 New Intel CPU Side-Channel Flaws Discovered
2018-08-15 07:40:00
cert
cert
msrc
msrc
Analysis and mitigation of L1 Terminal Fault (L1TF)
2018-08-13 07:00:00
Analysis and mitigation of L1 Terminal Fault (L1TF)
2018-08-13 07:00:00
cloudfoundry
cloudfoundry
USN-3740-2: Linux kernel (HWE) vulnerabilities | Cloud Foundry
2018-09-11 00:00:00
USN-3741-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-08-17 00:00:00
threatpost
threatpost
Intel CPUs Undermined By Fresh Speculative Execution Flaws
2018-08-14 19:24:34
New Ninth-Gen Intel CPUs Shield Against Some Spectre, Meltdown Variants
2018-10-09 19:37:35
lenovo
lenovo
L1 Terminal Fault Side Channel Vulnerabilities - Lenovo Support NL
2018-08-16 14:27:00
L1 Terminal Fault Side Channel Vulnerabilities - US
2018-08-16 14:27:00
cisco
cisco
CPU Side-Channel Information Disclosure Vulnerabilities: August 2018
2018-08-14 17:00:00
cvelist
cvelist
exploitpack
exploitpack
amazon
amazon
Critical: kernel
2018-08-10 22:53:00
Critical: kernel
2018-08-10 20:26:00
nvd
nvd
CVE-2017-18344
2018-07-26 19:29:00
CVE-2018-3620
2018-08-14 19:29:00
veracode
veracode
Information Disclosure
2019-01-15 09:26:26
Information Disclosure
2019-01-15 09:24:09
canvas
canvas
Immunity Canvas: SHOW_TIMER_LEAK
2018-07-26 19:29:00
cve
cve
zdt
zdt
Linux Kernel 4.14.7 ( Ubuntu 16.04 / CentOS 7) Arbitrary File Read Exploit
2018-08-09 00:00:00
virtuozzo
virtuozzo
ubuntucve
ubuntucve
huawei
huawei
Security Advisory - CPU Side Channel Vulnerability "L1TF"
2018-08-15 00:00:00
prion
prion
Design/Logic Flaw
2018-07-26 19:29:00
Information disclosure
2018-08-14 19:29:00
debiancve
debiancve
CVE-2017-18344
2018-07-26 19:29:00
CVE-2018-3620
2018-08-14 19:29:00
packetstorm
packetstorm
Linux Kernel 4.14.7 (Ubuntu 16.04 / CentOS 7) Arbitrary File Read
2018-08-09 00:00:00
citrix
citrix
XenServer Multiple Security Updates
2018-08-14 04:00:00
vmware
vmware
exploitdb
exploitdb
suse
suse
Security update for xen (important)
2018-08-19 15:10:45
4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
0.002 Low
EPSS
Percentile
64.6%
Related for ORACLEVM_OVMSA-2018-0247.NASL