Lucene search
This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.PHOTONOS_PHSA-2018-1_0-0097_LINUX.NASLHistoryFeb 07, 2019 - 12:00 a.m.
Photon OS 1.0: Linux PHSA-2018-1.0-0097
2019-02-0700:00:00
This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
119
4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
0.974 High
EPSS
Percentile
99.9%
An update of the linux package has been released.
#
# (C) Tenable Network Security, Inc.`
#
# The descriptive text and package checks in this plugin were
# extracted from VMware Security Advisory PHSA-2018-1.0-0097. The text
# itself is copyright (C) VMware, Inc.
include("compat.inc");
if (description)
{
script_id(121797);
script_version("1.3");
script_cvs_date("Date: 2019/04/02 21:54:17");
script_cve_id("CVE-2017-5754");
script_name(english:"Photon OS 1.0: Linux PHSA-2018-1.0-0097");
script_summary(english:"Checks the rpm output for the updated packages.");
script_set_attribute(attribute:"synopsis", value:
"The remote PhotonOS host is missing multiple security updates.");
script_set_attribute(attribute:"description", value:
"An update of the linux package has been released.");
script_set_attribute(attribute:"see_also", value:"https://github.com/vmware/photon/wiki/Security-Updates-1.0-97.md");
script_set_attribute(attribute:"solution", value:
"Update the affected Linux packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-5754");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/01/06");
script_set_attribute(attribute:"patch_publication_date", value:"2018/01/06");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/02/07");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:linux");
script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:photonos:1.0");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"PhotonOS Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/PhotonOS/release", "Host/PhotonOS/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/PhotonOS/release");
if (isnull(release) || release !~ "^VMware Photon") audit(AUDIT_OS_NOT, "PhotonOS");
if (release !~ "^VMware Photon (?:Linux|OS) 1\.0(\D|$)") audit(AUDIT_OS_NOT, "PhotonOS 1.0");
if (!get_kb_item("Host/PhotonOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "PhotonOS", cpu);
flag = 0;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-debuginfo-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-dev-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-docs-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-drivers-gpu-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-esx-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-esx-debuginfo-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-esx-devel-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-esx-docs-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-oprofile-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-sound-4.4.110-1.ph1")) flag++;
if (rpm_check(release:"PhotonOS-1.0", reference:"linux-tools-4.4.110-1.ph1")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux");
}
Related
msrc
msrc
KVA Shadow: Mitigating Meltdown on Windows
2018-03-23 07:00:00
KVA Shadow: Mitigating Meltdown on Windows
2018-03-23 07:00:00
nvd
nvd
threatpost
threatpost
Intel Details CPU ‘Virtual Fences’ Fix As Safeguard Against Spectre, Meltdown Flaws
2018-03-16 10:38:04
Experts Weigh In On Spectre Patch Challenges
2018-01-07 23:21:34
openvas
openvas
Ubuntu: Security Advisory (USN-3522-1)
2018-01-10 00:00:00
Ubuntu: Security Advisory (USN-3522-3)
2018-01-11 00:00:00
Ubuntu: Security Advisory (USN-3524-2)
2022-08-26 00:00:00
ubuntu
ubuntu
Linux (Xenial HWE) vulnerability
2018-01-09 00:00:00
Linux kernel vulnerability
2018-01-09 00:00:00
Linux kernel vulnerability
2018-01-09 00:00:00
debiancve
debiancve
redhatcve
redhatcve
nessus
nessus
Photon OS 1.0: Linux PHSA-2018-1.0-0097 (deprecated)
2018-08-17 00:00:00
Ubuntu 16.04 LTS : Linux kernel vulnerability (USN-3522-1)
2018-01-10 00:00:00
Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) regression (USN-3522-4)
2018-01-11 00:00:00
osv
osv
CVE-2017-5754
2018-01-04 13:29:00
linux - security update
2018-01-04 00:00:00
CVE-2018-10471
2018-04-27 15:29:00
alpinelinux
alpinelinux
CVE-2017-5754
2018-01-04 13:29:00
cloudfoundry
cloudfoundry
USN-3522-4: Linux kernel (Xenial HWE) regression | Cloud Foundry
2018-01-11 00:00:00
USN-3522-2: Linux (Xenial HWE) vulnerability | Cloud Foundry
2018-01-11 00:00:00
debian
debian
[SECURITY] [DSA 4078-1] linux security update
2018-01-04 22:25:28
cvelist
cvelist
ubuntucve
ubuntucve
photon
photon
archlinux
archlinux
[ASA-201801-6] linux-lts: access restriction bypass
2018-01-08 00:00:00
cve
cve
prion
prion
Default configuration
2018-01-04 13:29:00
Out-of-bounds
2018-04-27 15:29:00
Code injection
2018-12-08 04:29:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-18:03.speculative_execution
2018-03-14 00:00:00
ibm
ibm
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2018-01-13 17:28:36
Updated kernel packages fix security vulnerabilities
2018-02-23 20:14:35
Updated nvidia-current packages mitigates security issues
2018-01-13 17:28:36
slackware
slackware
[slackware-security] kernel
2018-01-16 06:32:33
oraclelinux
oraclelinux
kernel security update
2018-02-23 00:00:00
Unbreakable Enterprise kernel security update
2018-01-12 00:00:00
Unbreakable Enterprise kernel security update
2018-01-09 00:00:00
kitploit
kitploit
intel
intel
redhat
redhat
(RHSA-2018:1129) Important: kernel security and bug fix update
2018-04-17 14:32:29
(RHSA-2018:1374) Important: kernel-alt security and bug fix update
2018-05-14 12:46:32
(RHSA-2019:1046) Important: rhvm-setup-plugins security and bug fix update
2019-05-08 11:28:05
freebsd
freebsd
FreeBSD -- Speculative Execution Vulnerabilities
2018-03-14 00:00:00
amazon
amazon
Critical: kernel
2018-01-03 19:27:00
Critical: kernel
2018-01-11 21:05:00
xen
xen
x86: DoS from attempting to use INVPCID with a non-canonical addresses
2018-11-20 12:00:00
huawei
huawei
Security Advisory - CPU Vulnerabilities Meltdown and Spectre
2018-06-06 00:00:00
Security Advisory - CPU Vulnerabilities 'Meltdown' and 'Spectre'
2018-01-06 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2018-01-16 21:08:59
Security update for the Linux Kernel (important)
2018-01-11 18:10:26
Security update for the Linux Kernel (important)
2018-01-16 21:08:19
nvidia
nvidia
seebug
seebug
Reading privileged memory with a side-channel
(Meltdown & Spectre)
2018-01-04 00:00:00
virtuozzo
virtuozzo
Important kernel security update: Fixes for Meltdown and Spectre exploits; new kernel 3.10.0-693.11.6.vz7.40.4, Virtuozzo 7.0 Update 6 Hotfix 3 (7.0.6-710)
2018-01-08 00:00:00
vmware
vmware
lenovo
lenovo
Reading Privileged Memory with a Side Channel - Lenovo Support US
2018-10-24 12:22:52
Reading Privileged Memory with a Side Channel - US
2018-10-24 12:22:52
f5
f5
symantec
symantec
Multiple CPU Hardware CVE-2017-5753 Information Disclosure Vulnerability
2018-01-03 00:00:00
qualysblog
qualysblog
Meltdown/Spectre and Qualys Cloud Platform
2018-01-09 02:36:19
Processor Vulnerabilities – Meltdown and Spectre
2018-01-04 02:17:43
arista
arista
Security Advisory 0031
2018-01-03 00:00:00
taosecurity
taosecurity
Lies and More Lies
2018-01-22 14:28:00
thn
thn
[Guide] How to Protect Your Devices Against Meltdown and Spectre Attacks
2018-01-04 21:18:00
securelist
securelist
IT threat evolution Q1 2018
2018-05-14 10:00:08
4.7 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:C/I:N/A:N
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
0.974 High
EPSS
Percentile
99.9%
Related for PHOTONOS_PHSA-2018-1_0-0097_LINUX.NASL