Lucene search
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20070710_KERNEL_ON_SL5_X.NASLHistoryAug 01, 2012 - 12:00 a.m.
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
EPSS
0
Percentile
16.4%
- a flaw in the signal handling on PowerPC-based systems that allowed a local user to cause a denial of service (floating point corruption). (CVE-2007-3107, Moderate).
In addition to the security issue described above, a fix for the following has been included :
- a bug that can lead to data corruption with ServerWorks IDE controllers.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(60222);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2007-3107");
script_name(english:"Scientific Linux Security Update : kernel on SL5.x i386/x86_64");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
" - a flaw in the signal handling on PowerPC-based systems
that allowed a local user to cause a denial of service
(floating point corruption). (CVE-2007-3107, Moderate).
In addition to the security issue described above, a fix for the
following has been included :
- a bug that can lead to data corruption with ServerWorks
IDE controllers."
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind0707&L=scientific-linux-errata&T=0&P=447
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?b2f1f9b7"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"patch_publication_date", value:"2007/07/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL5", reference:"kernel-2.6.18-8.1.8.el5")) flag++;
if (rpm_check(release:"SL5", cpu:"i386", reference:"kernel-PAE-2.6.18-8.1.8.el5")) flag++;
if (rpm_check(release:"SL5", cpu:"i386", reference:"kernel-PAE-devel-2.6.18-8.1.8.el5")) flag++;
if (rpm_check(release:"SL5", reference:"kernel-devel-2.6.18-8.1.8.el5")) flag++;
if (rpm_check(release:"SL5", cpu:"i386", reference:"kernel-doc-2.6.18-8.1.8.el5")) flag++;
if (rpm_check(release:"SL5", reference:"kernel-headers-2.6.18-8.1.8.el5")) flag++;
if (rpm_check(release:"SL5", reference:"kernel-xen-2.6.18-8.1.8.el5")) flag++;
if (rpm_check(release:"SL5", reference:"kernel-xen-devel-2.6.18-8.1.8.el5")) flag++;
if (flag)
{
if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
else security_note(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
oraclelinux
oraclelinux
Moderate: kernel security and bug fix update
2007-07-11 00:00:00
nessus
nessus
RHEL 5 : kernel (RHSA-2007:0595)
2007-07-10 00:00:00
CentOS 5 : kernel (CESA-2007:0595)
2010-01-06 00:00:00
Oracle Linux 5 : kernel (ELSA-2007-0595)
2013-07-12 00:00:00
cvelist
cvelist
CVE-2007-3107
2007-07-10 22:00:00
nvd
nvd
CVE-2007-3107
2007-07-10 22:30:00
cve
cve
CVE-2007-3107
2007-07-10 22:30:00
ubuntucve
ubuntucve
CVE-2007-3107
2007-07-10 00:00:00
redhat
redhat
(RHSA-2007:0595) Moderate: kernel security and bug fix update
2007-07-09 00:00:00
centos
centos
kernel security update
2007-07-10 21:57:22
seebug
seebug
Linux PowerPC Kernel Restore_Sigcontextζ¬ε°ζη»ζε‘ζΌζ΄
2007-07-12 00:00:00
prion
prion
Design/Logic Flaw
2007-07-10 22:30:00
openvas
openvas
Oracle: Security Advisory (ELSA-2007-0595)
2015-10-08 00:00:00
SuSE Update for kernel SUSE-SA:2007:051
2009-01-28 00:00:00
SuSE Update for kernel SUSE-SA:2007:053
2009-01-28 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:16:34
suse
suse
remote denial of service in kernel
2007-09-06 17:18:55
local privilege escalation in kernel
2007-10-12 16:04:36
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-02-04 00:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
EPSS
0
Percentile
16.4%
Related for SL_20070710_KERNEL_ON_SL5_X.NASL