Lucene search
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20121218_KERNEL_ON_SL6_X.NASLHistoryDec 20, 2012 - 12:00 a.m.
Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20121218)
2012-12-2000:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
31
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
EPSS
0.029
Percentile
90.9%
This update fixes the following security issues :
-
It was found that a previous update did not correctly fix the CVE-2011-4131 issue. A malicious Network File System version 4 (NFSv4) server could return a crafted reply to a GETACL request, causing a denial of service on the client. (CVE-2012-2375, Moderate)
-
A divide-by-zero flaw was found in the TCP Illinois congestion control algorithm implementation in the Linux kernel. If the TCP Illinois congestion control algorithm were in use (the sysctl net.ipv4.tcp_congestion_control variable set to ‘illinois’), a local, unprivileged user could trigger this flaw and cause a denial of service.
(CVE-2012-4565, Moderate) -
A NULL pointer dereference flaw was found in the way a new node’s hot added memory was propagated to other nodes’ zonelists. By utilizing this newly added memory from one of the remaining nodes, a local, unprivileged user could use this flaw to cause a denial of service.
(CVE-2012-5517, Moderate) -
It was found that the initial release of Scientific Linux 6 did not correctly fix the CVE-2009-4307 issue, a divide-by-zero flaw in the ext4 file system code. A local, unprivileged user with the ability to mount an ext4 file system could use this flaw to cause a denial of service. (CVE-2012-2100, Low)
-
A flaw was found in the way the Linux kernel’s IPv6 implementation handled overlapping, fragmented IPv6 packets. A remote attacker could potentially use this flaw to bypass protection mechanisms (such as a firewall or intrusion detection system (IDS)) when sending network packets to a target system. (CVE-2012-4444, Low)
The system must be rebooted for this update to take effect.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(63313);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2009-4307", "CVE-2011-4131", "CVE-2012-2100", "CVE-2012-2375", "CVE-2012-4444", "CVE-2012-4565", "CVE-2012-5517");
script_name(english:"Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20121218)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"This update fixes the following security issues :
- It was found that a previous update did not correctly
fix the CVE-2011-4131 issue. A malicious Network File
System version 4 (NFSv4) server could return a crafted
reply to a GETACL request, causing a denial of service
on the client. (CVE-2012-2375, Moderate)
- A divide-by-zero flaw was found in the TCP Illinois
congestion control algorithm implementation in the Linux
kernel. If the TCP Illinois congestion control algorithm
were in use (the sysctl net.ipv4.tcp_congestion_control
variable set to 'illinois'), a local, unprivileged user
could trigger this flaw and cause a denial of service.
(CVE-2012-4565, Moderate)
- A NULL pointer dereference flaw was found in the way a
new node's hot added memory was propagated to other
nodes' zonelists. By utilizing this newly added memory
from one of the remaining nodes, a local, unprivileged
user could use this flaw to cause a denial of service.
(CVE-2012-5517, Moderate)
- It was found that the initial release of Scientific
Linux 6 did not correctly fix the CVE-2009-4307 issue, a
divide-by-zero flaw in the ext4 file system code. A
local, unprivileged user with the ability to mount an
ext4 file system could use this flaw to cause a denial
of service. (CVE-2012-2100, Low)
- A flaw was found in the way the Linux kernel's IPv6
implementation handled overlapping, fragmented IPv6
packets. A remote attacker could potentially use this
flaw to bypass protection mechanisms (such as a firewall
or intrusion detection system (IDS)) when sending
network packets to a target system. (CVE-2012-4444, Low)
The system must be rebooted for this update to take effect."
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind1212&L=scientific-linux-errata&T=0&P=1179
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?81ba4ecd"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C");
script_cwe_id(189);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo-common-i686");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo-common-x86_64");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-firmware");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:perf-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:python-perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:python-perf-debuginfo");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"vuln_publication_date", value:"2009/12/13");
script_set_attribute(attribute:"patch_publication_date", value:"2012/12/18");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/12/20");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL6", reference:"kernel-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-debug-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-debug-debuginfo-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-debug-devel-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-debuginfo-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", cpu:"i386", reference:"kernel-debuginfo-common-i686-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", cpu:"x86_64", reference:"kernel-debuginfo-common-x86_64-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-devel-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-doc-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-firmware-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-headers-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"perf-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"perf-debuginfo-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"python-perf-2.6.32-279.19.1.el6")) flag++;
if (rpm_check(release:"SL6", reference:"python-perf-debuginfo-2.6.32-279.19.1.el6")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-debug / kernel-debug-debuginfo / kernel-debug-devel / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | perf | p-cpe:/a:fermilab:scientific_linux:perf |
| fermilab | scientific_linux | perf-debuginfo | p-cpe:/a:fermilab:scientific_linux:perf-debuginfo |
| fermilab | scientific_linux | python-perf | p-cpe:/a:fermilab:scientific_linux:python-perf |
| fermilab | scientific_linux | python-perf-debuginfo | p-cpe:/a:fermilab:scientific_linux:python-perf-debuginfo |
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux | |
| fermilab | scientific_linux | kernel | p-cpe:/a:fermilab:scientific_linux:kernel |
| fermilab | scientific_linux | kernel-debug | p-cpe:/a:fermilab:scientific_linux:kernel-debug |
| fermilab | scientific_linux | kernel-debug-debuginfo | p-cpe:/a:fermilab:scientific_linux:kernel-debug-debuginfo |
| fermilab | scientific_linux | kernel-debug-devel | p-cpe:/a:fermilab:scientific_linux:kernel-debug-devel |
| fermilab | scientific_linux | kernel-debuginfo | p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4307
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4131
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2100
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2375
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4444
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4565
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5517
www.nessus.org/u?81ba4ecd
Related
openvas
openvas
CentOS Update for kernel CESA-2012:1580 centos6
2012-12-26 00:00:00
RedHat Update for kernel RHSA-2012:1580-01
2012-12-26 00:00:00
CentOS Update for kernel CESA-2012:1580 centos6
2012-12-26 00:00:00
nessus
nessus
CentOS 6 : kernel (CESA-2012:1580)
2012-12-20 00:00:00
Oracle Linux 6 : kernel (ELSA-2012-1580)
2013-07-12 00:00:00
Amazon Linux AMI : kernel / nvidia (ALAS-2013-148)
2013-09-04 00:00:00
centos
centos
kernel, perf, python security update
2012-12-19 16:28:42
kernel security update
2012-11-13 20:46:28
kernel, perf, python security update
2012-07-10 17:23:49
redhat
redhat
(RHSA-2012:1580) Moderate: kernel security, bug fix and enhancement update
2012-12-18 00:00:00
(RHSA-2012:1445) Low: kernel security and bug fix update
2012-11-13 00:00:00
(RHSA-2013:0566) Important: kernel-rt security and bug fix update
2013-03-06 00:00:00
amazon
amazon
Medium: kernel, nvidia
2013-01-14 01:14:00
oraclelinux
oraclelinux
kernel security, bug fix and enhancement update
2012-12-19 00:00:00
Unbreakable Enterprise kernel security update
2012-12-20 00:00:00
Unbreakable Enterprise kernel security update
2012-12-19 00:00:00
prion
prion
Code injection
2012-07-03 16:40:00
Design/Logic Flaw
2012-06-13 10:24:00
Design/Logic Flaw
2012-12-21 11:47:00
ubuntucve
ubuntucve
nvd
nvd
cvelist
cvelist
cve
cve
debiancve
debiancve
fedora
fedora
[SECURITY] Fedora 17 Update: kernel-3.3.7-1.fc17
2012-05-26 22:24:57
[SECURITY] Fedora 16 Update: kernel-3.1.1-2.fc16
2011-11-19 06:08:22
[SECURITY] Fedora 16 Update: kernel-3.1.6-1.fc16
2011-12-23 22:19:52
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:58:30
Denial Of Service (DoS)
2020-04-10 00:43:33
Denial Of Service (DoS)
2019-05-02 04:41:26
ubuntu
ubuntu
Linux kernel vulnerability
2012-12-11 00:00:00
Linux kernel (EC2) vulnerability
2012-12-13 00:00:00
Linux kernel vulnerability
2012-12-11 00:00:00
securityvulns
securityvulns
Linux kernel IPv6 filterin bypass
2012-12-12 00:00:00
[USN-1677-1] Linux kernel vulnerability
2013-01-02 00:00:00
[USN-1660-1] Linux kernel vulnerability
2012-12-12 00:00:00
seebug
seebug
Linux kernel ipv6分片拒绝服务漏洞(CVE-2012-4444)
2012-12-24 00:00:00
Linux Kernel ext4_fill_flex_info函数拒绝服务漏洞
2010-01-06 00:00:00
Linux Kernel 空指针引用拒绝服务漏洞(CVE-2012-5517)
2012-11-19 00:00:00
suse
suse
Security update for Linux kernel (important)
2012-06-26 02:08:23
Security update for Linux kernel (important)
2013-06-04 23:04:12
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
EPSS
0.029
Percentile
90.9%
Related for SL_20121218_KERNEL_ON_SL6_X.NASL