Lucene search
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2021-3801.NASLHistoryOct 13, 2021 - 12:00 a.m.
RHEL 7 : kernel (RHSA-2021:3801)
2021-10-1300:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
143
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
8.7 High
CVSS4
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/SC:H/VI:H/SI:H/VA:L/SA:L
9.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.6%
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3801 advisory.
-
kernel: SVM nested virtualization issue in KVM (AVIC support) (CVE-2021-3653)
-
kernel: SVM nested virtualization issue in KVM (VMLOAD/VMSAVE) (CVE-2021-3656)
-
kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks (CVE-2021-22543)
-
kernel: powerpc: KVM guest OS users can cause host OS memory corruption (CVE-2021-37576)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2021:3801. The text
# itself is copyright (C) Red Hat, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(154046);
script_version("1.9");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/28");
script_cve_id(
"CVE-2021-3653",
"CVE-2021-3656",
"CVE-2021-22543",
"CVE-2021-37576"
);
script_xref(name:"RHSA", value:"2021:3801");
script_name(english:"RHEL 7 : kernel (RHSA-2021:3801)");
script_set_attribute(attribute:"synopsis", value:
"The remote Red Hat host is missing one or more security updates for kernel.");
script_set_attribute(attribute:"description", value:
"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as
referenced in the RHSA-2021:3801 advisory.
- kernel: SVM nested virtualization issue in KVM (AVIC support) (CVE-2021-3653)
- kernel: SVM nested virtualization issue in KVM (VMLOAD/VMSAVE) (CVE-2021-3656)
- kernel: Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks (CVE-2021-22543)
- kernel: powerpc: KVM guest OS users can cause host OS memory corruption (CVE-2021-37576)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
# https://access.redhat.com/security/data/csaf/v2/advisories/2021/rhsa-2021_3801.json
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?457ee213");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/updates/classification/#important");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2021:3801");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1965461");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1983686");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1983988");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=1986506");
script_set_attribute(attribute:"solution", value:
"Update the RHEL kernel package based on the guidance in RHSA-2021:3801.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-37576");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2021-3656");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_cwe_id(119, 862, 863);
script_set_attribute(attribute:"vendor_severity", value:"Important");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/05/26");
script_set_attribute(attribute:"patch_publication_date", value:"2021/10/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/10/13");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bpftool");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:python-perf");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Red Hat Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl", "redhat_repos.nasl", "linux_alt_patch_detect.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
include('rhel.inc');
include('ksplice.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');
var os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');
os_ver = os_ver[1];
if (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '7')) audit(AUDIT_OS_NOT, 'Red Hat 7.x', 'Red Hat ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);
if (get_one_kb_item('Host/ksplice/kernel-cves'))
{
rm_kb_item(name:'Host/uptrack-uname-r');
var cve_list = make_list('CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576');
if (ksplice_cves_check(cve_list))
{
audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2021:3801');
}
else
{
__rpm_report = ksplice_reporting_text();
}
}
var constraints = [
{
'repo_relative_urls': [
'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/debug',
'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/optional/debug',
'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/optional/os',
'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/optional/source/SRPMS',
'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/os',
'content/dist/rhel-alt/server/7/7Server/power9/ppc64le/source/SRPMS',
'content/dist/rhel-alt/server/7/7Server/system-z-a/s390x/debug',
'content/dist/rhel-alt/server/7/7Server/system-z-a/s390x/optional/debug',
'content/dist/rhel-alt/server/7/7Server/system-z-a/s390x/optional/os',
'content/dist/rhel-alt/server/7/7Server/system-z-a/s390x/optional/source/SRPMS',
'content/dist/rhel-alt/server/7/7Server/system-z-a/s390x/os',
'content/dist/rhel-alt/server/7/7Server/system-z-a/s390x/source/SRPMS',
'content/dist/rhel/client/7/7.9/x86_64/debug',
'content/dist/rhel/client/7/7.9/x86_64/optional/debug',
'content/dist/rhel/client/7/7.9/x86_64/optional/os',
'content/dist/rhel/client/7/7.9/x86_64/optional/source/SRPMS',
'content/dist/rhel/client/7/7.9/x86_64/os',
'content/dist/rhel/client/7/7.9/x86_64/source/SRPMS',
'content/dist/rhel/client/7/7Client/x86_64/debug',
'content/dist/rhel/client/7/7Client/x86_64/optional/debug',
'content/dist/rhel/client/7/7Client/x86_64/optional/os',
'content/dist/rhel/client/7/7Client/x86_64/optional/source/SRPMS',
'content/dist/rhel/client/7/7Client/x86_64/os',
'content/dist/rhel/client/7/7Client/x86_64/source/SRPMS',
'content/dist/rhel/computenode/7/7.9/x86_64/optional/debug',
'content/dist/rhel/computenode/7/7.9/x86_64/optional/os',
'content/dist/rhel/computenode/7/7.9/x86_64/optional/source/SRPMS',
'content/dist/rhel/computenode/7/7ComputeNode/x86_64/debug',
'content/dist/rhel/computenode/7/7ComputeNode/x86_64/optional/debug',
'content/dist/rhel/computenode/7/7ComputeNode/x86_64/optional/os',
'content/dist/rhel/computenode/7/7ComputeNode/x86_64/optional/source/SRPMS',
'content/dist/rhel/computenode/7/7ComputeNode/x86_64/os',
'content/dist/rhel/computenode/7/7ComputeNode/x86_64/source/SRPMS',
'content/dist/rhel/power-le/7/7.9/ppc64le/debug',
'content/dist/rhel/power-le/7/7.9/ppc64le/highavailability/debug',
'content/dist/rhel/power-le/7/7.9/ppc64le/highavailability/os',
'content/dist/rhel/power-le/7/7.9/ppc64le/highavailability/source/SRPMS',
'content/dist/rhel/power-le/7/7.9/ppc64le/optional/debug',
'content/dist/rhel/power-le/7/7.9/ppc64le/optional/os',
'content/dist/rhel/power-le/7/7.9/ppc64le/optional/source/SRPMS',
'content/dist/rhel/power-le/7/7.9/ppc64le/os',
'content/dist/rhel/power-le/7/7.9/ppc64le/resilientstorage/debug',
'content/dist/rhel/power-le/7/7.9/ppc64le/resilientstorage/os',
'content/dist/rhel/power-le/7/7.9/ppc64le/resilientstorage/source/SRPMS',
'content/dist/rhel/power-le/7/7.9/ppc64le/source/SRPMS',
'content/dist/rhel/power-le/7/7Server/ppc64le/debug',
'content/dist/rhel/power-le/7/7Server/ppc64le/highavailability/debug',
'content/dist/rhel/power-le/7/7Server/ppc64le/highavailability/os',
'content/dist/rhel/power-le/7/7Server/ppc64le/highavailability/source/SRPMS',
'content/dist/rhel/power-le/7/7Server/ppc64le/optional/debug',
'content/dist/rhel/power-le/7/7Server/ppc64le/optional/os',
'content/dist/rhel/power-le/7/7Server/ppc64le/optional/source/SRPMS',
'content/dist/rhel/power-le/7/7Server/ppc64le/os',
'content/dist/rhel/power-le/7/7Server/ppc64le/resilientstorage/debug',
'content/dist/rhel/power-le/7/7Server/ppc64le/resilientstorage/os',
'content/dist/rhel/power-le/7/7Server/ppc64le/resilientstorage/source/SRPMS',
'content/dist/rhel/power-le/7/7Server/ppc64le/source/SRPMS',
'content/dist/rhel/power/7/7.9/ppc64/debug',
'content/dist/rhel/power/7/7.9/ppc64/optional/debug',
'content/dist/rhel/power/7/7.9/ppc64/optional/os',
'content/dist/rhel/power/7/7.9/ppc64/optional/source/SRPMS',
'content/dist/rhel/power/7/7.9/ppc64/os',
'content/dist/rhel/power/7/7.9/ppc64/source/SRPMS',
'content/dist/rhel/power/7/7Server/ppc64/debug',
'content/dist/rhel/power/7/7Server/ppc64/optional/debug',
'content/dist/rhel/power/7/7Server/ppc64/optional/os',
'content/dist/rhel/power/7/7Server/ppc64/optional/source/SRPMS',
'content/dist/rhel/power/7/7Server/ppc64/os',
'content/dist/rhel/power/7/7Server/ppc64/source/SRPMS',
'content/dist/rhel/server/7/7.9/x86_64/debug',
'content/dist/rhel/server/7/7.9/x86_64/highavailability/debug',
'content/dist/rhel/server/7/7.9/x86_64/highavailability/os',
'content/dist/rhel/server/7/7.9/x86_64/highavailability/source/SRPMS',
'content/dist/rhel/server/7/7.9/x86_64/optional/debug',
'content/dist/rhel/server/7/7.9/x86_64/optional/os',
'content/dist/rhel/server/7/7.9/x86_64/optional/source/SRPMS',
'content/dist/rhel/server/7/7.9/x86_64/os',
'content/dist/rhel/server/7/7.9/x86_64/resilientstorage/debug',
'content/dist/rhel/server/7/7.9/x86_64/resilientstorage/os',
'content/dist/rhel/server/7/7.9/x86_64/resilientstorage/source/SRPMS',
'content/dist/rhel/server/7/7.9/x86_64/source/SRPMS',
'content/dist/rhel/server/7/7Server/x86_64/debug',
'content/dist/rhel/server/7/7Server/x86_64/highavailability/debug',
'content/dist/rhel/server/7/7Server/x86_64/highavailability/os',
'content/dist/rhel/server/7/7Server/x86_64/highavailability/source/SRPMS',
'content/dist/rhel/server/7/7Server/x86_64/optional/debug',
'content/dist/rhel/server/7/7Server/x86_64/optional/os',
'content/dist/rhel/server/7/7Server/x86_64/optional/source/SRPMS',
'content/dist/rhel/server/7/7Server/x86_64/os',
'content/dist/rhel/server/7/7Server/x86_64/resilientstorage/debug',
'content/dist/rhel/server/7/7Server/x86_64/resilientstorage/os',
'content/dist/rhel/server/7/7Server/x86_64/resilientstorage/source/SRPMS',
'content/dist/rhel/server/7/7Server/x86_64/source/SRPMS',
'content/dist/rhel/system-z/7/7.9/s390x/debug',
'content/dist/rhel/system-z/7/7.9/s390x/highavailability/debug',
'content/dist/rhel/system-z/7/7.9/s390x/highavailability/os',
'content/dist/rhel/system-z/7/7.9/s390x/highavailability/source/SRPMS',
'content/dist/rhel/system-z/7/7.9/s390x/optional/debug',
'content/dist/rhel/system-z/7/7.9/s390x/optional/os',
'content/dist/rhel/system-z/7/7.9/s390x/optional/source/SRPMS',
'content/dist/rhel/system-z/7/7.9/s390x/os',
'content/dist/rhel/system-z/7/7.9/s390x/resilientstorage/debug',
'content/dist/rhel/system-z/7/7.9/s390x/resilientstorage/os',
'content/dist/rhel/system-z/7/7.9/s390x/resilientstorage/source/SRPMS',
'content/dist/rhel/system-z/7/7.9/s390x/source/SRPMS',
'content/dist/rhel/system-z/7/7Server/s390x/debug',
'content/dist/rhel/system-z/7/7Server/s390x/highavailability/debug',
'content/dist/rhel/system-z/7/7Server/s390x/highavailability/os',
'content/dist/rhel/system-z/7/7Server/s390x/highavailability/source/SRPMS',
'content/dist/rhel/system-z/7/7Server/s390x/optional/debug',
'content/dist/rhel/system-z/7/7Server/s390x/optional/os',
'content/dist/rhel/system-z/7/7Server/s390x/optional/source/SRPMS',
'content/dist/rhel/system-z/7/7Server/s390x/os',
'content/dist/rhel/system-z/7/7Server/s390x/resilientstorage/debug',
'content/dist/rhel/system-z/7/7Server/s390x/resilientstorage/os',
'content/dist/rhel/system-z/7/7Server/s390x/resilientstorage/source/SRPMS',
'content/dist/rhel/system-z/7/7Server/s390x/source/SRPMS',
'content/dist/rhel/workstation/7/7.9/x86_64/debug',
'content/dist/rhel/workstation/7/7.9/x86_64/optional/debug',
'content/dist/rhel/workstation/7/7.9/x86_64/optional/os',
'content/dist/rhel/workstation/7/7.9/x86_64/optional/source/SRPMS',
'content/dist/rhel/workstation/7/7.9/x86_64/os',
'content/dist/rhel/workstation/7/7.9/x86_64/source/SRPMS',
'content/dist/rhel/workstation/7/7Workstation/x86_64/debug',
'content/dist/rhel/workstation/7/7Workstation/x86_64/optional/debug',
'content/dist/rhel/workstation/7/7Workstation/x86_64/optional/os',
'content/dist/rhel/workstation/7/7Workstation/x86_64/optional/source/SRPMS',
'content/dist/rhel/workstation/7/7Workstation/x86_64/os',
'content/dist/rhel/workstation/7/7Workstation/x86_64/source/SRPMS',
'content/fastrack/rhel/client/7/x86_64/debug',
'content/fastrack/rhel/client/7/x86_64/optional/debug',
'content/fastrack/rhel/client/7/x86_64/optional/os',
'content/fastrack/rhel/client/7/x86_64/optional/source/SRPMS',
'content/fastrack/rhel/client/7/x86_64/os',
'content/fastrack/rhel/client/7/x86_64/source/SRPMS',
'content/fastrack/rhel/computenode/7/x86_64/debug',
'content/fastrack/rhel/computenode/7/x86_64/optional/debug',
'content/fastrack/rhel/computenode/7/x86_64/optional/os',
'content/fastrack/rhel/computenode/7/x86_64/optional/source/SRPMS',
'content/fastrack/rhel/computenode/7/x86_64/os',
'content/fastrack/rhel/computenode/7/x86_64/source/SRPMS',
'content/fastrack/rhel/power/7/ppc64/debug',
'content/fastrack/rhel/power/7/ppc64/optional/debug',
'content/fastrack/rhel/power/7/ppc64/optional/os',
'content/fastrack/rhel/power/7/ppc64/optional/source/SRPMS',
'content/fastrack/rhel/power/7/ppc64/os',
'content/fastrack/rhel/power/7/ppc64/source/SRPMS',
'content/fastrack/rhel/server/7/x86_64/debug',
'content/fastrack/rhel/server/7/x86_64/highavailability/debug',
'content/fastrack/rhel/server/7/x86_64/highavailability/os',
'content/fastrack/rhel/server/7/x86_64/highavailability/source/SRPMS',
'content/fastrack/rhel/server/7/x86_64/optional/debug',
'content/fastrack/rhel/server/7/x86_64/optional/os',
'content/fastrack/rhel/server/7/x86_64/optional/source/SRPMS',
'content/fastrack/rhel/server/7/x86_64/os',
'content/fastrack/rhel/server/7/x86_64/resilientstorage/debug',
'content/fastrack/rhel/server/7/x86_64/resilientstorage/os',
'content/fastrack/rhel/server/7/x86_64/resilientstorage/source/SRPMS',
'content/fastrack/rhel/server/7/x86_64/source/SRPMS',
'content/fastrack/rhel/system-z/7/s390x/debug',
'content/fastrack/rhel/system-z/7/s390x/optional/debug',
'content/fastrack/rhel/system-z/7/s390x/optional/os',
'content/fastrack/rhel/system-z/7/s390x/optional/source/SRPMS',
'content/fastrack/rhel/system-z/7/s390x/os',
'content/fastrack/rhel/system-z/7/s390x/source/SRPMS',
'content/fastrack/rhel/workstation/7/x86_64/debug',
'content/fastrack/rhel/workstation/7/x86_64/optional/debug',
'content/fastrack/rhel/workstation/7/x86_64/optional/os',
'content/fastrack/rhel/workstation/7/x86_64/optional/source/SRPMS',
'content/fastrack/rhel/workstation/7/x86_64/os',
'content/fastrack/rhel/workstation/7/x86_64/source/SRPMS'
],
'pkgs': [
{'reference':'bpftool-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'bpftool-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'bpftool-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'bpftool-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-bootwrapper-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-bootwrapper-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-debug-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-debug-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-debug-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-debug-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-debug-devel-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-debug-devel-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-debug-devel-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-debug-devel-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-devel-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-devel-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-devel-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-devel-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-headers-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653']},
{'reference':'kernel-kdump-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-kdump-devel-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-libs-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-libs-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-libs-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-libs-devel-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-libs-devel-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'kernel-tools-libs-devel-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'perf-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'perf-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'perf-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'perf-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'python-perf-3.10.0-1160.45.1.el7', 'cpu':'ppc64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'python-perf-3.10.0-1160.45.1.el7', 'cpu':'ppc64le', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'python-perf-3.10.0-1160.45.1.el7', 'cpu':'s390x', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']},
{'reference':'python-perf-3.10.0-1160.45.1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2021-3653', 'CVE-2021-3656', 'CVE-2021-22543', 'CVE-2021-37576']}
]
}
];
var applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);
if(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);
var flag = 0;
foreach var constraint_array ( constraints ) {
var repo_relative_urls = NULL;
if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];
foreach var pkg ( constraint_array['pkgs'] ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
var cves = NULL;
if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];
if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
if (reference &&
_release &&
rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&
(applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&
rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
}
}
if (flag)
{
var extra = NULL;
if (isnull(applicable_repo_urls) || !applicable_repo_urls) extra = rpm_report_get() + redhat_report_repo_caveat();
else extra = rpm_report_get();
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : extra
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bpftool / kernel / kernel-bootwrapper / kernel-debug / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | 7 | cpe:/o:redhat:enterprise_linux:7 |
| redhat | enterprise_linux | bpftool | p-cpe:/a:redhat:enterprise_linux:bpftool |
| redhat | enterprise_linux | kernel | p-cpe:/a:redhat:enterprise_linux:kernel |
| redhat | enterprise_linux | kernel-bootwrapper | p-cpe:/a:redhat:enterprise_linux:kernel-bootwrapper |
| redhat | enterprise_linux | kernel-debug | p-cpe:/a:redhat:enterprise_linux:kernel-debug |
| redhat | enterprise_linux | kernel-debug-devel | p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel |
| redhat | enterprise_linux | kernel-devel | p-cpe:/a:redhat:enterprise_linux:kernel-devel |
| redhat | enterprise_linux | kernel-headers | p-cpe:/a:redhat:enterprise_linux:kernel-headers |
| redhat | enterprise_linux | kernel-kdump | p-cpe:/a:redhat:enterprise_linux:kernel-kdump |
| redhat | enterprise_linux | kernel-kdump-devel | p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22543
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3653
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3656
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37576
www.nessus.org/u?457ee213
access.redhat.com/errata/RHSA-2021:3801
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1965461
bugzilla.redhat.com/show_bug.cgi?id=1983686
bugzilla.redhat.com/show_bug.cgi?id=1983988
bugzilla.redhat.com/show_bug.cgi?id=1986506
Related
ibm
ibm
centos
centos
bpftool, kernel, perf, python security update
2021-11-17 15:22:13
redhat
redhat
(RHSA-2021:3801) Important: kernel security and bug fix update
2021-10-12 13:21:31
(RHSA-2021:3812) Important: kernel security update
2021-10-12 14:15:36
(RHSA-2021:3802) Important: kernel-rt security and bug fix update
2021-10-12 13:21:33
oraclelinux
oraclelinux
kernel security and bug fix update
2021-10-12 00:00:00
Unbreakable Enterprise kernel-container security update
2021-08-16 00:00:00
Unbreakable Enterprise kernel-container security update
2021-08-16 00:00:00
nessus
nessus
Oracle Linux 7 : kernel (ELSA-2021-3801)
2021-10-13 00:00:00
Scientific Linux Security Update : kernel on SL7.x x86_64 (2021:3801)
2021-10-14 00:00:00
CentOS 7 : kernel (CESA-2021:3801)
2021-11-17 00:00:00
openvas
openvas
CentOS: Security Advisory for bpftool (CESA-2021:3801)
2021-11-18 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-a424256622)
2021-08-23 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-33819e6b09)
2021-08-23 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: kernel-5.13.12-100.fc33
2021-08-21 01:20:26
[SECURITY] Fedora 34 Update: kernel-5.13.12-200.fc34
2021-08-21 01:08:00
[SECURITY] Fedora 33 Update: kernel-tools-5.13.6-100.fc33
2021-08-02 01:07:19
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-09-08 00:00:00
Linux kernel vulnerabilities
2021-09-08 00:00:00
Linux kernel (HWE) vulnerabilities
2021-09-16 00:00:00
osv
osv
linux-azure-5.8, linux-oem-5.10 vulnerabilities
2021-09-08 23:48:20
linux-hwe-5.4 vulnerabilities
2021-09-16 17:13:34
cloudfoundry
cloudfoundry
USN-5071-2: Linux kernel (HWE) vulnerabilities | Cloud Foundry
2021-10-04 00:00:00
USN-5094-1: Linux kernel vulnerabilities | Cloud Foundry
2021-10-28 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2021-08-23 08:28:48
Updated kernel packages fix security vulnerabilities
2021-08-23 08:28:48
suse
suse
Security update for the Linux Kernel (important)
2021-08-11 00:00:00
Security update for the Linux Kernel (important)
2021-08-14 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-37576 affecting package kernel 5.10.168.1-1
2021-09-09 15:03:26
CVE-2021-37576 affecting package kernel for versions less than 5.10.78.1-1
2022-04-09 06:52:47
CVE-2021-3653 affecting package kernel 5.10.189.1-1
2021-11-03 19:21:29
nvd
nvd
ubuntucve
ubuntucve
redhatcve
redhatcve
cve
cve
cloudlinux
cloudlinux
Fixed CVE-2021-22543 in kernel
2022-07-28 14:18:22
Fixed CVE-2021-22543 in kernel
2022-07-28 14:22:27
prion
prion
Privilege escalation
2021-05-26 11:15:00
Memory corruption
2021-07-26 22:15:00
Input validation
2021-09-29 20:15:00
f5
f5
K39029022 : Linux kernel vulnerability CVE-2021-37576
2022-01-20 00:00:00
K01217337 : Linux kernel vulnerability CVE-2021-22543
2022-02-07 00:00:00
K11546763 : Linux kernel vulnerability CVE-2021-3653
2022-01-20 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-09-09 16:22:43
Denial Of Service (DoS)
2021-09-11 17:29:29
cvelist
cvelist
CVE-2021-37576
2021-07-26 21:35:58
CVE-2021-22543 Improper memory handling in Linux KVM
2021-05-18 00:00:00
CVE-2021-3653
2021-09-29 19:41:01
debiancve
debiancve
amazon
amazon
Important: kernel
2021-08-13 17:31:00
photon
photon
redos
redos
ROS-20220207-01
2022-02-07 00:00:00
rocky
rocky
kernel security, bug fix, and enhancement update
2021-09-15 09:41:20
kernel-rt security and bug fix update
2021-09-15 09:40:56
kernel security and bug fix update
2021-09-07 17:24:27
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2021-09-15 09:41:20
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
8.7 High
CVSS4
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/SC:H/VI:H/SI:H/VA:L/SA:L
9.4 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.6%
Related for REDHAT-RHSA-2021-3801.NASL