Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2021-1373-1.NASL
HistoryApr 29, 2021 - 12:00 a.m.

SUSE SLES12 Security Update : kernel (SUSE-SU-2021:1373-1)

2021-04-2900:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
26

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.4%

JSON

This update for the Linux Kernel 4.4.180-94_135 fixes one issue.

The following security issues were fixed :

CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc##1182294, bsc#1183646).

CVE-2021-26930: Fixed an improper error handling in blkback’s grant mapping (XSA-365 bsc#1182294).

CVE-2021-26931: Fixed an issue where Linux kernel was treating grant mapping errors as bugs (XSA-362 bsc#1183022).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2021:1373-1.
# The text itself is copyright (C) SUSE.
#

include('compat.inc');

if (description)
{
  script_id(149083);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/03");

  script_cve_id("CVE-2021-26930", "CVE-2021-26931", "CVE-2021-28688");

  script_name(english:"SUSE SLES12 Security Update : kernel (SUSE-SU-2021:1373-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"This update for the Linux Kernel 4.4.180-94_135 fixes one issue.

The following security issues were fixed :

CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc##1182294,
bsc#1183646).

CVE-2021-26930: Fixed an improper error handling in blkback's grant
mapping (XSA-365 bsc#1182294).

CVE-2021-26931: Fixed an issue where Linux kernel was treating grant
mapping errors as bugs (XSA-362 bsc#1183022).

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1182294");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-26930/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-26931/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-28688/");
  # https://www.suse.com/support/update/announcement/2021/suse-su-20211373-1
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6d84b1b5");
  script_set_attribute(attribute:"solution", value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.

Alternatively you can run the command listed for your product :

SUSE Linux Enterprise Server for SAP 12-SP3 :

zypper in -t patch SUSE-SLE-SAP-12-SP3-2021-1337=1
SUSE-SLE-SAP-12-SP3-2021-1338=1 SUSE-SLE-SAP-12-SP3-2021-1339=1
SUSE-SLE-SAP-12-SP3-2021-1340=1 SUSE-SLE-SAP-12-SP3-2021-1371=1
SUSE-SLE-SAP-12-SP3-2021-1372=1 SUSE-SLE-SAP-12-SP3-2021-1373=1

SUSE Linux Enterprise Server 12-SP3-LTSS :

zypper in -t patch SUSE-SLE-SERVER-12-SP3-2021-1337=1
SUSE-SLE-SERVER-12-SP3-2021-1338=1 SUSE-SLE-SERVER-12-SP3-2021-1339=1
SUSE-SLE-SERVER-12-SP3-2021-1340=1 SUSE-SLE-SERVER-12-SP3-2021-1371=1
SUSE-SLE-SERVER-12-SP3-2021-1372=1 SUSE-SLE-SERVER-12-SP3-2021-1373=1");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-26930");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/02/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/04/28");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/04/29");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_116-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_116-default-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_121-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_121-default-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_124-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_124-default-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_127-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_127-default-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_130-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_130-default-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_135-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_135-default-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_138-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_138-default-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"SuSE Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES12", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
if (cpu >!< "x86_64") audit(AUDIT_ARCH_NOT, "x86_64", cpu);


sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(3)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP3", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_116-default-10-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_116-default-debuginfo-10-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_121-default-9-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_121-default-debuginfo-9-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_124-default-9-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_124-default-debuginfo-9-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_127-default-9-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_127-default-debuginfo-9-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_130-default-8-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_130-default-debuginfo-8-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_135-default-6-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_135-default-debuginfo-6-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_138-default-4-2.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"kgraft-patch-4_4_180-94_138-default-debuginfo-4-2.2")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
VendorProductVersionCPE
novellsuse_linuxkgraft-patch-4_4_180-94_121-defaultp-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_121-default
novellsuse_linuxkgraft-patch-4_4_180-94_127-defaultp-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_127-default
novellsuse_linuxkgraft-patch-4_4_180-94_138-default-debuginfop-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_138-default-debuginfo
novellsuse_linux12cpe:/o:novell:suse_linux:12
novellsuse_linuxkgraft-patch-4_4_180-94_124-defaultp-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_124-default
novellsuse_linuxkgraft-patch-4_4_180-94_135-defaultp-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_135-default
novellsuse_linuxkgraft-patch-4_4_180-94_121-default-debuginfop-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_121-default-debuginfo
novellsuse_linuxkgraft-patch-4_4_180-94_116-defaultp-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_116-default
novellsuse_linuxkgraft-patch-4_4_180-94_124-default-debuginfop-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_124-default-debuginfo
novellsuse_linuxkgraft-patch-4_4_180-94_127-default-debuginfop-cpe:/a:novell:suse_linux:kgraft-patch-4_4_180-94_127-default-debuginfo
Rows per page:
1-10 of 151

Related

openvas 38
nessus 67
fedora 2
oraclelinux 18
citrix 2
ubuntu 6
mageia 8
osv 8
cve 4
ubuntucve 4
nvd 4
debiancve 4
prion 4
cvelist 4
xen 3
cbl_mariner 2
photon 12
amazon 3
suse 1
debian 4
cloudfoundry 1
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:1373-1)
2021-06-09 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-8d45d297c6)
2021-02-27 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2021-7143aca8cb)
2021-02-27 00:00:00
nessus
nessus
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9067)
2021-02-19 00:00:00
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9053)
2021-02-16 00:00:00
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9135)
2021-03-24 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: kernel-5.10.18-100.fc32
2021-02-26 23:36:07
[SECURITY] Fedora 33 Update: kernel-5.10.18-200.fc33
2021-02-26 23:55:43
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2021-02-16 00:00:00
Unbreakable Enterprise kernel security update
2021-02-19 00:00:00
Unbreakable Enterprise kernel-container security update
2021-02-17 00:00:00
citrix
citrix
Citrix Hypervisor Security Update
2021-02-16 14:49:39
Citrix Hypervisor Security Update
2021-03-30 10:17:36
ubuntu
ubuntu
Linux kernel vulnerabilities
2021-04-13 00:00:00
Linux kernel vulnerabilities
2021-05-11 00:00:00
Linux kernel vulnerabilities
2021-04-13 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2021-03-04 15:26:19
Updated kernel packages fix security vulnerabilities
2021-03-04 15:26:19
Updated kernel-linus packages fix security vulnerabilities
2021-03-04 15:26:19
osv
osv
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities
2021-04-13 21:55:19
linux, linux-aws, lnux-aws-hwe, linux-azure, inux-azure-4.15, linux-dell300x, linux-gcp, linux-hwe, linux-gcp-4.15, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities
2021-05-11 21:53:16
linux-4.19 - security update
2021-03-29 00:00:00
cve
cve
CVE-2021-28688
2021-04-06 19:15:14
CVE-2021-26930
2021-02-17 01:15:13
CVE-2021-26931
2021-02-17 02:15:12
ubuntucve
ubuntucve
CVE-2021-28688
2021-04-06 00:00:00
CVE-2021-26930
2021-02-17 00:00:00
CVE-2021-26931
2021-02-17 00:00:00
nvd
nvd
CVE-2021-28688
2021-04-06 19:15:14
CVE-2021-26931
2021-02-17 02:15:12
CVE-2021-26930
2021-02-17 01:15:13
debiancve
debiancve
CVE-2021-28688
2021-04-06 19:15:14
CVE-2021-26931
2021-02-17 02:15:12
CVE-2021-26930
2021-02-17 01:15:13
prion
prion
Design/Logic Flaw
2021-04-06 19:15:00
Memory corruption
2021-02-17 02:15:00
Code injection
2021-02-17 01:15:00
cvelist
cvelist
CVE-2021-28688
2021-04-06 18:07:41
CVE-2021-26930
2021-02-17 00:00:00
CVE-2021-26931
2021-02-17 00:00:00
xen
xen
Linux: error handling issues in blkback's grant mapping
2021-02-16 12:00:00
Linux: blkback driver may leak persistent grants
2021-03-30 11:03:00
Linux: backends treating grant mapping errors as bugs
2021-02-16 12:00:00
cbl_mariner
cbl_mariner
CVE-2021-26930 affecting package kernel 5.4.91-6
2021-08-25 19:57:09
CVE-2021-26931 affecting package kernel 5.4.91-6
2021-08-25 19:57:09
photon
photon
Important Photon OS Security Update - PHSA-2021-0201
2021-03-02 00:00:00
Important Photon OS Security Update - PHSA-2021-3.0-0201
2021-03-02 00:00:00
Important Photon OS Security Update - PHSA-2021-0322
2021-03-02 00:00:00
amazon
amazon
Important: kernel
2021-03-18 17:29:00
Important: kernel
2021-03-18 01:13:00
Low: kernel
2021-05-20 21:12:00
suse
suse
Security update for the Linux Kernel (important)
2021-03-08 00:00:00
debian
debian
[SECURITY] [DLA 2610-1] linux-4.19 security update
2021-03-30 21:45:31
[SECURITY] [DLA 2586-1] linux security update
2021-03-09 18:08:10
[SECURITY] [DLA 2690-1] linux-4.19 security update
2021-06-23 00:05:06
cloudfoundry
cloudfoundry
USN-4982-1: Linux kernel vulnerabilities | Cloud Foundry
2021-06-11 00:00:00

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.4%

JSON
Related for SUSE_SU-2021-1373-1.NASL
openvas38nessus67fedora2oraclelinux18citrix2ubuntu6mageia8osv8cve4ubuntucve4nvd4debiancve4prion4cvelist4xen3cbl_mariner2photon12amazon3suse1debian4cloudfoundry1