Lucene search
This script is Copyright (C) 2007-2024 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2007-0937.NASLHistoryOct 03, 2007 - 12:00 a.m.
RHEL 4 : kernel (RHSA-2007:0937)
2007-10-0300:00:00
This script is Copyright (C) 2007-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
0.4%
The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2007:0937 advisory.
- x86_64 syscall vulnerability (CVE-2007-4573)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2007:0937. The text
# itself is copyright (C) Red Hat, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(26905);
script_version("1.29");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/21");
script_cve_id("CVE-2007-4573");
script_bugtraq_id(25774);
script_xref(name:"RHSA", value:"2007:0937");
script_name(english:"RHEL 4 : kernel (RHSA-2007:0937)");
script_set_attribute(attribute:"synopsis", value:
"The remote Red Hat host is missing a security update for kernel.");
script_set_attribute(attribute:"description", value:
"The remote Redhat Enterprise Linux 4 host has packages installed that are affected by a vulnerability as referenced in
the RHSA-2007:0937 advisory.
- x86_64 syscall vulnerability (CVE-2007-4573)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
# https://access.redhat.com/security/data/csaf/v2/advisories/2007/rhsa-2007_0937.json
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?a88dd450");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/updates/classification/#important");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=294541");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2007:0937");
script_set_attribute(attribute:"solution", value:
"Update the RHEL kernel package based on the guidance in RHSA-2007:0937.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2007-4573");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vendor_severity", value:"Important");
script_set_attribute(attribute:"vuln_publication_date", value:"2007/09/24");
script_set_attribute(attribute:"patch_publication_date", value:"2007/09/27");
script_set_attribute(attribute:"plugin_publication_date", value:"2007/10/03");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-hugemem");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-hugemem-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-largesmp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-largesmp-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-smp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-smp-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-xenU");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-xenU-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:4");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Red Hat Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2007-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl", "redhat_repos.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
include('rhel.inc');
include('ksplice.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');
var os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');
os_ver = os_ver[1];
if (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '4')) audit(AUDIT_OS_NOT, 'Red Hat 4.x', 'Red Hat ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);
if (get_one_kb_item('Host/ksplice/kernel-cves'))
{
rm_kb_item(name:'Host/uptrack-uname-r');
var cve_list = make_list('CVE-2007-4573');
if (ksplice_cves_check(cve_list))
{
audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2007:0937');
}
else
{
__rpm_report = ksplice_reporting_text();
}
}
var constraints = [
{
'repo_relative_urls': [
'content/dist/rhel/as/4/4AS/i386/os',
'content/dist/rhel/as/4/4AS/i386/source/SRPMS',
'content/dist/rhel/as/4/4AS/x86_64/os',
'content/dist/rhel/as/4/4AS/x86_64/source/SRPMS',
'content/dist/rhel/desktop/4/4Desktop/i386/os',
'content/dist/rhel/desktop/4/4Desktop/i386/source/SRPMS',
'content/dist/rhel/desktop/4/4Desktop/x86_64/os',
'content/dist/rhel/desktop/4/4Desktop/x86_64/source/SRPMS',
'content/dist/rhel/es/4/4ES/i386/os',
'content/dist/rhel/es/4/4ES/i386/source/SRPMS',
'content/dist/rhel/es/4/4ES/x86_64/os',
'content/dist/rhel/es/4/4ES/x86_64/source/SRPMS',
'content/dist/rhel/system-z/4/4AS/s390/os',
'content/dist/rhel/system-z/4/4AS/s390/source/SRPMS',
'content/dist/rhel/system-z/4/4AS/s390x/os',
'content/dist/rhel/system-z/4/4AS/s390x/source/SRPMS',
'content/dist/rhel/ws/4/4WS/i386/os',
'content/dist/rhel/ws/4/4WS/i386/source/SRPMS',
'content/dist/rhel/ws/4/4WS/x86_64/os',
'content/dist/rhel/ws/4/4WS/x86_64/source/SRPMS'
],
'pkgs': [
{'reference':'kernel-2.6.9-55.0.9.EL', 'cpu':'i686', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-2.6.9-55.0.9.EL', 'cpu':'ppc64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-2.6.9-55.0.9.EL', 'cpu':'ppc64iseries', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-2.6.9-55.0.9.EL', 'cpu':'s390', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-2.6.9-55.0.9.EL', 'cpu':'s390x', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-2.6.9-55.0.9.EL', 'cpu':'x86_64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-devel-2.6.9-55.0.9.EL', 'cpu':'i686', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-devel-2.6.9-55.0.9.EL', 'cpu':'ppc64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-devel-2.6.9-55.0.9.EL', 'cpu':'ppc64iseries', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-devel-2.6.9-55.0.9.EL', 'cpu':'s390', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-devel-2.6.9-55.0.9.EL', 'cpu':'s390x', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-devel-2.6.9-55.0.9.EL', 'cpu':'x86_64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-hugemem-2.6.9-55.0.9.EL', 'cpu':'i686', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-hugemem-devel-2.6.9-55.0.9.EL', 'cpu':'i686', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-largesmp-2.6.9-55.0.9.EL', 'cpu':'ppc64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-largesmp-2.6.9-55.0.9.EL', 'cpu':'x86_64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-largesmp-devel-2.6.9-55.0.9.EL', 'cpu':'ppc64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-largesmp-devel-2.6.9-55.0.9.EL', 'cpu':'x86_64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-smp-2.6.9-55.0.9.EL', 'cpu':'i686', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-smp-2.6.9-55.0.9.EL', 'cpu':'x86_64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-smp-devel-2.6.9-55.0.9.EL', 'cpu':'i686', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-smp-devel-2.6.9-55.0.9.EL', 'cpu':'x86_64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-xenU-2.6.9-55.0.9.EL', 'cpu':'i686', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-xenU-2.6.9-55.0.9.EL', 'cpu':'x86_64', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-xenU-devel-2.6.9-55.0.9.EL', 'cpu':'i686', 'release':'4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'kernel-xenU-devel-2.6.9-55.0.9.EL', 'cpu':'x86_64', 'release':'4', 'rpm_spec_vers_cmp':TRUE}
]
}
];
var applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);
if(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);
var flag = 0;
foreach var constraint_array ( constraints ) {
var repo_relative_urls = NULL;
if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];
foreach var pkg ( constraint_array['pkgs'] ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
var cves = NULL;
if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];
if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
if (reference &&
_release &&
rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&
(applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&
rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
}
}
if (flag)
{
var extra = NULL;
if (isnull(applicable_repo_urls) || !applicable_repo_urls) extra = rpm_report_get() + redhat_report_repo_caveat();
else extra = rpm_report_get();
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : extra
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'kernel / kernel-devel / kernel-hugemem / kernel-hugemem-devel / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | kernel | p-cpe:/a:redhat:enterprise_linux:kernel |
| redhat | enterprise_linux | kernel-devel | p-cpe:/a:redhat:enterprise_linux:kernel-devel |
| redhat | enterprise_linux | kernel-hugemem | p-cpe:/a:redhat:enterprise_linux:kernel-hugemem |
| redhat | enterprise_linux | kernel-hugemem-devel | p-cpe:/a:redhat:enterprise_linux:kernel-hugemem-devel |
| redhat | enterprise_linux | kernel-largesmp | p-cpe:/a:redhat:enterprise_linux:kernel-largesmp |
| redhat | enterprise_linux | kernel-largesmp-devel | p-cpe:/a:redhat:enterprise_linux:kernel-largesmp-devel |
| redhat | enterprise_linux | kernel-smp | p-cpe:/a:redhat:enterprise_linux:kernel-smp |
| redhat | enterprise_linux | kernel-smp-devel | p-cpe:/a:redhat:enterprise_linux:kernel-smp-devel |
| redhat | enterprise_linux | kernel-xenu | p-cpe:/a:redhat:enterprise_linux:kernel-xenu |
| redhat | enterprise_linux | kernel-xenu-devel | p-cpe:/a:redhat:enterprise_linux:kernel-xenu-devel |
Related
redhat
redhat
(RHSA-2007:0936) Important: kernel security update
2007-09-27 00:00:00
(RHSA-2007:0938) Important: kernel security update
2007-09-27 00:00:00
(RHSA-2007:0937) Important: kernel security update
2007-09-27 00:00:00
nessus
nessus
Oracle Linux 5 : kernel (ELSA-2007-0936)
2013-07-12 00:00:00
CentOS 4 : kernel (CESA-2007:0937)
2007-10-03 00:00:00
Scientific Linux Security Update : kernel on SL5.x, SL4.x, SL3.x i386/x86_64
2012-08-01 00:00:00
f5
f5
SOL8171 - Linux kernel IA32 System Call vulnerability - CVE-2007-4573
2007-12-20 00:00:00
K8171 : Linux kernel IA32 System Call vulnerability - CVE-2007-4573
2013-03-19 00:00:00
openvas
openvas
Fedora Update for kernel FEDORA-2007-2298
2009-02-27 00:00:00
Fedora Update for kernel FEDORA-2007-2298
2009-02-27 00:00:00
Fedora Update for kernel FEDORA-2007-712
2009-02-27 00:00:00
centos
centos
kernel security update
2007-09-28 03:13:34
kernel security update
2007-09-27 23:39:10
kernel security update
2007-09-28 11:16:01
securityvulns
securityvulns
64-bit Linux kernel privilege escalation
2007-09-25 00:00:00
Linux kernel multiple security vulnrabilities
2008-01-13 00:00:00
prion
prion
Out-of-bounds
2007-09-24 22:17:00
Out-of-bounds
2010-09-22 19:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:19:26
cvelist
cvelist
CVE-2007-4573
2007-09-24 22:00:00
CVE-2010-3301
2010-09-22 18:00:00
nvd
nvd
CVE-2007-4573
2007-09-24 22:17:00
CVE-2010-3301
2010-09-22 19:00:03
cve
cve
CVE-2007-4573
2007-09-24 22:17:00
CVE-2010-3301
2010-09-22 19:00:03
ubuntucve
ubuntucve
CVE-2007-4573
2007-09-24 00:00:00
CVE-2010-3301
2010-09-15 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: kernel-2.6.22.7-85.fc7
2007-09-25 15:44:20
debian
debian
osv
osv
linux-2.6
2007-10-02 00:00:00
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2007-09-28 00:00:00
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2007-09-28 00:00:00
ubuntu
ubuntu
oraclelinux
oraclelinux
Important: kernel security update
2007-09-28 00:00:00
Important: kernel security update
2007-09-30 00:00:00
suse
suse
remote denial of service in kernel
2007-12-04 11:58:44
local privilege escalation in kernel
2007-10-12 16:04:36
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
0.4%
Related for REDHAT-RHSA-2007-0937.NASL