Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2024 Greenbone AGOPENVAS:1361412562310833647
HistoryMar 04, 2024 - 12:00 a.m.

openSUSE: Security Advisory for the Linux Kernel (Live Patch 7 for SLE 15 SP4) (SUSE-SU-2024:0421-1)

2024-03-0400:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
5
opensuse
security advisory
linux kernel
live patch
sle 15 sp4
cve-2023-6932
cve-2023-6176
cve-2023-5178
vulnerability
update

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

Low

0.024 Low

EPSS

Percentile

90.1%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.833647");
  script_version("2024-06-19T05:05:42+0000");
  script_cve_id("CVE-2023-5178", "CVE-2023-6176", "CVE-2023-6932");
  script_tag(name:"cvss_base", value:"9.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-06-19 05:05:42 +0000 (Wed, 19 Jun 2024)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2024-06-18 15:10:41 +0000 (Tue, 18 Jun 2024)");
  script_tag(name:"creation_date", value:"2024-03-04 12:56:16 +0000 (Mon, 04 Mar 2024)");
  script_name("openSUSE: Security Advisory for the Linux Kernel (Live Patch 7 for SLE 15 SP4) (SUSE-SU-2024:0421-1)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2024 Greenbone AG");
  script_family("SuSE Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/suse", "ssh/login/rpms", re:"ssh/login/release=(openSUSELeap15\.4|openSUSELeap15\.5)");

  script_xref(name:"Advisory-ID", value:"SUSE-SU-2024:0421-1");
  script_xref(name:"URL", value:"https://lists.opensuse.org/archives/list/[email protected]/thread/D4G7KRM6LOB3INO7JKKTYLMG3W7UFSQM");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'the Linux Kernel (Live Patch 7 for SLE 15 SP4)'
  package(s) announced via the SUSE-SU-2024:0421-1 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"This update for the Linux Kernel 5.14.21-150400_24_41 fixes several issues.

  The following security issues were fixed:

  * CVE-2023-6932: Fixed a use-after-free vulnerability in the ipv4 igmp
      component that could lead to local privilege escalation (bsc#1218255).

  * CVE-2023-6176: Fixed a denial of service in the cryptographic algorithm
      scatterwalk functionality (bsc#1217522).

  * CVE-2023-5178: Fixed a use-after-free vulnerability in queue initialization
      setup (bsc#1215768).

  ##");

  script_tag(name:"affected", value:"'the Linux Kernel (Live Patch 7 for SLE 15 SP4)' package(s) on openSUSE Leap 15.4, openSUSE Leap 15.5.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "openSUSELeap15.4") {

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_81-default-debuginfo-5", rpm:"kernel-livepatch-5_14_21-150400_24_81-default-debuginfo-5~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_41-default-12", rpm:"kernel-livepatch-5_14_21-150400_24_41-default-12~150400.2.2", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-SLE15-SP4_Update_18-debugsource-4", rpm:"kernel-livepatch-SLE15-SP4_Update_18-debugsource-4~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-SLE15-SP4_Update_16-debugsource-5", rpm:"kernel-livepatch-SLE15-SP4_Update_16-debugsource-5~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_88-default-4", rpm:"kernel-livepatch-5_14_21-150400_24_88-default-4~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_88-default-debuginfo-4", rpm:"kernel-livepatch-5_14_21-150400_24_88-default-debuginfo-4~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-SLE15-SP4_Update_7-debugsource-12", rpm:"kernel-livepatch-SLE15-SP4_Update_7-debugsource-12~150400.2.2", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_81-default-5", rpm:"kernel-livepatch-5_14_21-150400_24_81-default-5~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_41-default-debuginfo-12", rpm:"kernel-livepatch-5_14_21-150400_24_41-default-debuginfo-12~150400.2.2", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_81-default-debuginfo-5", rpm:"kernel-livepatch-5_14_21-150400_24_81-default-debuginfo-5~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_41-default-12", rpm:"kernel-livepatch-5_14_21-150400_24_41-default-12~150400.2.2", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-SLE15-SP4_Update_18-debugsource-4", rpm:"kernel-livepatch-SLE15-SP4_Update_18-debugsource-4~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-SLE15-SP4_Update_16-debugsource-5", rpm:"kernel-livepatch-SLE15-SP4_Update_16-debugsource-5~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_88-default-4", rpm:"kernel-livepatch-5_14_21-150400_24_88-default-4~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_88-default-debuginfo-4", rpm:"kernel-livepatch-5_14_21-150400_24_88-default-debuginfo-4~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-SLE15-SP4_Update_7-debugsource-12", rpm:"kernel-livepatch-SLE15-SP4_Update_7-debugsource-12~150400.2.2", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_81-default-5", rpm:"kernel-livepatch-5_14_21-150400_24_81-default-5~150400.2.1", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150400_24_41-default-debuginfo-12", rpm:"kernel-livepatch-5_14_21-150400_24_41-default-debuginfo-12~150400.2.2", rls:"openSUSELeap15.4"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

if(release == "openSUSELeap15.5") {

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150500_55_7-default-debuginfo-6", rpm:"kernel-livepatch-5_14_21-150500_55_7-default-debuginfo-6~150500.2.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150500_55_7-default-6", rpm:"kernel-livepatch-5_14_21-150500_55_7-default-6~150500.2.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-SLE15-SP5_Update_1-debugsource-6", rpm:"kernel-livepatch-SLE15-SP5_Update_1-debugsource-6~150500.2.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150500_55_7-default-debuginfo-6", rpm:"kernel-livepatch-5_14_21-150500_55_7-default-debuginfo-6~150500.2.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-5_14_21-150500_55_7-default-6", rpm:"kernel-livepatch-5_14_21-150500_55_7-default-6~150500.2.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(!isnull(res = isrpmvuln(pkg:"kernel-livepatch-SLE15-SP5_Update_1-debugsource-6", rpm:"kernel-livepatch-SLE15-SP5_Update_1-debugsource-6~150500.2.1", rls:"openSUSELeap15.5"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Related

nessus 65
openvas 32
prion 4
redhatcve 3
cve 4
cvelist 3
nvd 4
debiancve 3
ubuntu 26
ubuntucve 4
cbl_mariner 4
redhat 6
githubexploit 1
oraclelinux 4
osv 24
rosalinux 3
amazon 2
ibm 3
photon 2
rocky 1
mageia 1
nessus
nessus
SUSE SLES15 Security Update : kernel (Live Patch 3 for SLE 15 SP5) (SUSE-SU-2024:0352-1)
2024-02-07 00:00:00
SUSE SLES15 Security Update : kernel (Live Patch 19 for SLE 15 SP4) (SUSE-SU-2024:0378-1)
2024-02-07 00:00:00
SUSE SLES15 Security Update : kernel (Live Patch 1 for SLE 15 SP5) (SUSE-SU-2024:0421-1)
2024-02-07 00:00:00
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (Live Patch 35 for SLE 15 SP3) (SUSE-SU-2024:0411-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for the Linux Kernel (Live Patch 20 for SLE 15 SP4) (SUSE-SU-2024:0428-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for the Linux Kernel (Live Patch 21 for SLE 15 SP4) (SUSE-SU-2024:0429-1)
2024-03-04 00:00:00
prion
prion
Null pointer dereference
2023-11-16 18:15:00
Race condition
2023-12-19 14:15:00
Double free
2023-11-01 17:15:00
redhatcve
redhatcve
CVE-2023-6176
2023-11-16 13:45:11
CVE-2023-6932
2023-12-19 21:46:48
CVE-2023-5178
2023-10-16 04:16:55
cve
cve
CVE-2023-6176
2023-11-16 18:15:07
CVE-2023-6932
2023-12-19 14:15:08
CVE-2023-5178
2023-11-01 17:15:11
cvelist
cvelist
CVE-2023-6176 Kernel: local dos vulnerability in scatterwalk_copychunks
2023-11-16 17:15:44
CVE-2023-6932 Use-after-free in Linux kernel's ipv4: igmp component
2023-12-19 14:09:15
CVE-2023-5178 Kernel: use after free in nvmet_tcp_free_crypto in nvme
2023-11-01 16:32:20
nvd
nvd
CVE-2023-6176
2023-11-16 18:15:07
CVE-2023-6932
2023-12-19 14:15:08
CVE-2023-5178
2023-11-01 17:15:11
debiancve
debiancve
CVE-2023-6176
2023-11-16 18:15:07
CVE-2023-5178
2023-11-01 17:15:11
CVE-2023-6932
2023-12-19 14:15:08
ubuntu
ubuntu
Kernel Live Patch Security Notice
2024-02-07 00:00:00
Linux kernel vulnerability
2024-01-25 00:00:00
Linux kernel (AWS) vulnerabilities
2024-01-25 00:00:00
ubuntucve
ubuntucve
CVE-2023-6176
2023-11-16 00:00:00
CVE-2023-5178
2023-11-01 00:00:00
CVE-2023-6932
2023-12-19 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-6932 affecting package kernel for versions less than 5.15.143.1-1
2024-01-19 03:54:24
CVE-2023-5178 affecting package kernel for versions less than 5.15.138.1-4
2023-12-05 04:40:34
CVE-2023-5178 affecting package hyperv-daemons for versions less than 5.15.137.1-1
2023-11-17 23:23:29
redhat
redhat
(RHSA-2023:7559) Important: kpatch-patch security update
2023-11-28 18:56:35
(RHSA-2023:7557) Important: kernel security and bug fix update
2023-11-28 18:03:46
(RHSA-2023:7551) Important: kernel-rt security update
2023-11-28 16:15:31
githubexploit
githubexploit
Exploit for Use After Free in Linux Linux Kernel
2024-02-05 15:58:24
oraclelinux
oraclelinux
Unbreakable Enterprise kernel-container security update
2023-12-14 00:00:00
Unbreakable Enterprise kernel-container security update
2023-12-14 00:00:00
Unbreakable Enterprise kernel security update
2023-12-13 00:00:00
osv
osv
linux vulnerability
2024-01-25 19:32:56
linux-aws vulnerabilities
2024-01-25 20:24:48
linux-oem-6.1 vulnerabilities
2023-11-21 15:17:23
rosalinux
rosalinux
Advisory ROSA-SA-2024-2385
2024-03-28 06:53:29
Advisory ROSA-SA-2024-2384
2024-03-28 06:52:37
Advisory ROSA-SA-2024-2383
2024-03-28 06:51:27
amazon
amazon
Important: kernel
2024-01-03 22:37:00
Important: kernel
2024-01-03 21:04:00
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities (CVE-2023-42753, CVE-2023-5178, CVE-2023-47710, CVE-2023-45871)
2024-05-23 17:59:38
Security Bulletin: Multiple Linux Kernel vulnerabilities affects IBM Storage Scale System.
2024-05-03 09:04:24
Security Bulletin: Multiple Linux Kernel vulnerabilities affect IBM Storage Scale System.
2024-06-21 12:54:56
photon
photon
Critical Photon OS Security Update - PHSA-2024-5.0-0187
2024-01-09 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0510
2023-11-12 00:00:00
rocky
rocky
kernel security and bug fix update
2023-12-06 23:18:20
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2023-11-30 01:29:41

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

Low

0.024 Low

EPSS

Percentile

90.1%

JSON
Related for OPENVAS:1361412562310833647
nessus65openvas32prion4redhatcve3cve4cvelist3nvd4debiancve3ubuntu26ubuntucve4cbl_mariner4redhat6githubexploit1oraclelinux4osv24rosalinux3amazon2ibm3photon2rocky1mageia1