Lucene search
Copyright (C) 2016 Greenbone Networks GmbHOPENVAS:1361412562310851449HistoryDec 09, 2016 - 12:00 a.m.
openSUSE: Security Advisory for kernel (openSUSE-SU-2016:3058-1)
2016-12-0900:00:00
Copyright (C) 2016 Greenbone Networks GmbH
plugins.openvas.org
35
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
Low
0.736 High
EPSS
Percentile
98.1%
The remote host is missing an update for the
# Copyright (C) 2016 Greenbone Networks GmbH
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.851449");
script_version("2023-01-20T10:11:50+0000");
script_tag(name:"last_modification", value:"2023-01-20 10:11:50 +0000 (Fri, 20 Jan 2023)");
script_tag(name:"creation_date", value:"2016-12-09 05:38:55 +0100 (Fri, 09 Dec 2016)");
script_cve_id("CVE-2015-8956", "CVE-2015-8962", "CVE-2015-8963", "CVE-2015-8964",
"CVE-2016-7042", "CVE-2016-7097", "CVE-2016-7913", "CVE-2016-8630",
"CVE-2016-8633", "CVE-2016-8646", "CVE-2016-8655", "CVE-2016-9083",
"CVE-2016-9084", "CVE-2016-9178", "CVE-2016-9555", "CVE-2016-9794");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-01-19 16:13:00 +0000 (Thu, 19 Jan 2023)");
script_tag(name:"qod_type", value:"package");
script_name("openSUSE: Security Advisory for kernel (openSUSE-SU-2016:3058-1)");
script_tag(name:"summary", value:"The remote host is missing an update for the 'kernel'
package(s) announced via the referenced advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"The openSUSE Leap 42.1 kernel was updated to 4.1.36 to receive various
security and bugfixes.
The following security bugs were fixed:
- CVE-2016-8655: A race condition in the af_packet packet_set_ring
function could be used by local attackers to crash the kernel or gain
privileges (bsc#1012754).
- CVE-2016-9794: A use-after-free in ALSA pcm could lead to crashes or
allowed local users to potentially gain privileges (bsc#1013533).
- CVE-2015-8962: Double free vulnerability in the sg_common_write function
in drivers/scsi/sg.c in the Linux kernel allowed local users to gain
privileges or cause a denial of service (memory corruption and system
crash) by detaching a device during an SG_IO ioctl call (bnc#1010501).
- CVE-2016-9178: The __get_user_asm_ex macro in
arch/x86/include/asm/uaccess.h in the Linux kernel did not initialize a
certain integer variable, which allowed local users to obtain sensitive
information from kernel stack memory by triggering failure of a
get_user_ex call (bnc#1008650).
- CVE-2016-7913: The xc2028_set_config function in
drivers/media/tuners/tuner-xc2028.c in the Linux kernel allowed local
users to gain privileges or cause a denial of service (use-after-free)
via vectors involving omission of the firmware name from a certain data
structure (bnc#1010478).
- CVE-2016-9555: The sctp_sf_ootb function in net/sctp/sm_statefuns.c in
the Linux kernel lacks chunk-length checking for the first chunk, which
allowed remote attackers to cause a denial of service (out-of-bounds
slab access) or possibly have unspecified other impact via crafted SCTP
data (bnc#1011685).
- CVE-2015-8963: Race condition in kernel/events/core.c in the Linux
kernel allowed local users to gain privileges or cause a denial of
service (use-after-free) by leveraging incorrect handling of an swevent
data structure during a CPU unplug operation (bnc#1010502).
- CVE-2015-8964: The tty_set_termios_ldisc function in
drivers/tty/tty_ldisc.c in the Linux kernel allowed local users to
obtain sensitive information from kernel memory by reading a tty data
structure (bnc#1010507).
- CVE-2016-8646: The hash_accept function in crypto/algif_hash.c in the
Linux kernel allowed local users to cause a denial of service (OOPS) by
attempting to trigger use of in-kernel hash algorithms for a socket that
has received zero bytes of data (bnc#1010150).
- CVE-2016-8633: drivers/firewire/net.c in the Linux kernel in certain
unusual hardware configurations, allowed remote attackers to execute
arbitrary code via crafted fragmented packets (bnc#1008833 ...
Description truncated, please see the referenced URL(s) for more information.");
script_tag(name:"affected", value:"Kernel on openSUSE Leap 42.1");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_xref(name:"openSUSE-SU", value:"2016:3058-1");
script_tag(name:"solution_type", value:"VendorFix");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2016 Greenbone Networks GmbH");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse", "ssh/login/rpms", re:"ssh/login/release=openSUSELeap42\.1");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "openSUSELeap42.1") {
if(!isnull(res = isrpmvuln(pkg:"kernel-debug", rpm:"kernel-debug~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-debug-base", rpm:"kernel-debug-base~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-debug-base-debuginfo", rpm:"kernel-debug-base-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-debug-debuginfo", rpm:"kernel-debug-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-debug-debugsource", rpm:"kernel-debug-debugsource~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-debug-devel", rpm:"kernel-debug-devel~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-debug-devel-debuginfo", rpm:"kernel-debug-devel-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-ec2", rpm:"kernel-ec2~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-ec2-base", rpm:"kernel-ec2-base~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-ec2-base-debuginfo", rpm:"kernel-ec2-base-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-ec2-debuginfo", rpm:"kernel-ec2-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-ec2-debugsource", rpm:"kernel-ec2-debugsource~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-ec2-devel", rpm:"kernel-ec2-devel~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pv", rpm:"kernel-pv~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pv-base", rpm:"kernel-pv-base~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pv-base-debuginfo", rpm:"kernel-pv-base-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pv-debuginfo", rpm:"kernel-pv-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pv-debugsource", rpm:"kernel-pv-debugsource~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pv-devel", rpm:"kernel-pv-devel~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-vanilla", rpm:"kernel-vanilla~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-vanilla-debuginfo", rpm:"kernel-vanilla-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-vanilla-debugsource", rpm:"kernel-vanilla-debugsource~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-vanilla-devel", rpm:"kernel-vanilla-devel~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-xen", rpm:"kernel-xen~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-xen-base", rpm:"kernel-xen-base~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-xen-base-debuginfo", rpm:"kernel-xen-base-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-xen-debuginfo", rpm:"kernel-xen-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-xen-debugsource", rpm:"kernel-xen-debugsource~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-xen-devel", rpm:"kernel-xen-devel~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-debugsource", rpm:"hdjmod-debugsource~1.28~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-kmp-default", rpm:"hdjmod-kmp-default~1.28_k4.1.36_38~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-kmp-default-debuginfo", rpm:"hdjmod-kmp-default-debuginfo~1.28_k4.1.36_38~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-kmp-pv", rpm:"hdjmod-kmp-pv~1.28_k4.1.36_38~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-kmp-pv-debuginfo", rpm:"hdjmod-kmp-pv-debuginfo~1.28_k4.1.36_38~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-kmp-xen", rpm:"hdjmod-kmp-xen~1.28_k4.1.36_38~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-kmp-xen-debuginfo", rpm:"hdjmod-kmp-xen-debuginfo~1.28_k4.1.36_38~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset", rpm:"ipset~6.25.1~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-debuginfo", rpm:"ipset-debuginfo~6.25.1~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-debugsource", rpm:"ipset-debugsource~6.25.1~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-devel", rpm:"ipset-devel~6.25.1~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-kmp-default", rpm:"ipset-kmp-default~6.25.1_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-kmp-default-debuginfo", rpm:"ipset-kmp-default-debuginfo~6.25.1_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-kmp-pv", rpm:"ipset-kmp-pv~6.25.1_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-kmp-pv-debuginfo", rpm:"ipset-kmp-pv-debuginfo~6.25.1_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-kmp-xen", rpm:"ipset-kmp-xen~6.25.1_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-kmp-xen-debuginfo", rpm:"ipset-kmp-xen-debuginfo~6.25.1_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-default", rpm:"kernel-default~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-default-base", rpm:"kernel-default-base~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-default-base-debuginfo", rpm:"kernel-default-base-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-default-debuginfo", rpm:"kernel-default-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-default-debugsource", rpm:"kernel-default-debugsource~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-default-devel", rpm:"kernel-default-devel~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-obs-build", rpm:"kernel-obs-build~4.1.36~38.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-obs-build-debugsource", rpm:"kernel-obs-build-debugsource~4.1.36~38.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-obs-qa", rpm:"kernel-obs-qa~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-syms", rpm:"kernel-syms~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libipset3", rpm:"libipset3~6.25.1~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libipset3-debuginfo", rpm:"libipset3-debuginfo~6.25.1~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock", rpm:"pcfclock~0.44~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock-debuginfo", rpm:"pcfclock-debuginfo~0.44~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock-debugsource", rpm:"pcfclock-debugsource~0.44~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock-kmp-default", rpm:"pcfclock-kmp-default~0.44_k4.1.36_38~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock-kmp-default-debuginfo", rpm:"pcfclock-kmp-default-debuginfo~0.44_k4.1.36_38~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock-kmp-pv", rpm:"pcfclock-kmp-pv~0.44_k4.1.36_38~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock-kmp-pv-debuginfo", rpm:"pcfclock-kmp-pv-debuginfo~0.44_k4.1.36_38~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-debugsource", rpm:"vhba-kmp-debugsource~20140928~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-default", rpm:"vhba-kmp-default~20140928_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-default-debuginfo", rpm:"vhba-kmp-default-debuginfo~20140928_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-pv", rpm:"vhba-kmp-pv~20140928_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-pv-debuginfo", rpm:"vhba-kmp-pv-debuginfo~20140928_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-xen", rpm:"vhba-kmp-xen~20140928_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-xen-debuginfo", rpm:"vhba-kmp-xen-debuginfo~20140928_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-devel", rpm:"kernel-devel~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-docs", rpm:"kernel-docs~4.1.36~38.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-docs-html", rpm:"kernel-docs-html~4.1.36~38.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-docs-pdf", rpm:"kernel-docs-pdf~4.1.36~38.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-macros", rpm:"kernel-macros~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-source", rpm:"kernel-source~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-source-vanilla", rpm:"kernel-source-vanilla~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"drbd", rpm:"drbd~8.4.6~12.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"drbd-debugsource", rpm:"drbd-debugsource~8.4.6~12.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"drbd-kmp-default", rpm:"drbd-kmp-default~8.4.6_k4.1.36_38~12.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"drbd-kmp-default-debuginfo", rpm:"drbd-kmp-default-debuginfo~8.4.6_k4.1.36_38~12.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"drbd-kmp-pv", rpm:"drbd-kmp-pv~8.4.6_k4.1.36_38~12.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"drbd-kmp-pv-debuginfo", rpm:"drbd-kmp-pv-debuginfo~8.4.6_k4.1.36_38~12.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"drbd-kmp-xen", rpm:"drbd-kmp-xen~8.4.6_k4.1.36_38~12.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"drbd-kmp-xen-debuginfo", rpm:"drbd-kmp-xen-debuginfo~8.4.6_k4.1.36_38~12.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"lttng-modules", rpm:"lttng-modules~2.7.0~6.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"lttng-modules-debugsource", rpm:"lttng-modules-debugsource~2.7.0~6.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"lttng-modules-kmp-default", rpm:"lttng-modules-kmp-default~2.7.0_k4.1.36_38~6.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"lttng-modules-kmp-default-debuginfo", rpm:"lttng-modules-kmp-default-debuginfo~2.7.0_k4.1.36_38~6.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"lttng-modules-kmp-pv", rpm:"lttng-modules-kmp-pv~2.7.0_k4.1.36_38~6.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"lttng-modules-kmp-pv-debuginfo", rpm:"lttng-modules-kmp-pv-debuginfo~2.7.0_k4.1.36_38~6.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pae", rpm:"kernel-pae~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pae-base", rpm:"kernel-pae-base~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pae-base-debuginfo", rpm:"kernel-pae-base-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pae-debuginfo", rpm:"kernel-pae-debuginfo~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pae-debugsource", rpm:"kernel-pae-debugsource~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"kernel-pae-devel", rpm:"kernel-pae-devel~4.1.36~38.1", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-kmp-pae", rpm:"hdjmod-kmp-pae~1.28_k4.1.36_38~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"hdjmod-kmp-pae-debuginfo", rpm:"hdjmod-kmp-pae-debuginfo~1.28_k4.1.36_38~28.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-kmp-pae", rpm:"ipset-kmp-pae~6.25.1_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"ipset-kmp-pae-debuginfo", rpm:"ipset-kmp-pae-debuginfo~6.25.1_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock-kmp-pae", rpm:"pcfclock-kmp-pae~0.44_k4.1.36_38~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"pcfclock-kmp-pae-debuginfo", rpm:"pcfclock-kmp-pae-debuginfo~0.44_k4.1.36_38~270.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-pae", rpm:"vhba-kmp-pae~20140928_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"vhba-kmp-pae-debuginfo", rpm:"vhba-kmp-pae-debuginfo~20140928_k4.1.36_38~9.2", rls:"openSUSELeap42.1"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
References
Related
suse
suse
Security update for the Linux Kernel (important)
2016-12-08 15:07:13
Security update for the Linux Kernel (important)
2016-12-08 20:06:50
Security update for the Linux Kernel (important)
2016-12-08 13:08:00
nessus
nessus
openSUSE Security Update : the Linux Kernel (openSUSE-2016-1428)
2016-12-12 00:00:00
Scientific Linux Security Update : kernel on SL7.x x86_64 (20170302)
2017-03-03 00:00:00
Oracle Linux 7 : kernel (ELSA-2017-0386)
2017-03-03 00:00:00
redhat
redhat
(RHSA-2017:0386) Important: kernel security, bug fix, and enhancement update
2017-03-02 15:22:31
(RHSA-2017:0387) Important: kernel-rt security and bug fix update
2017-03-02 15:22:34
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2017-03-03 00:00:00
kernel security, bug fix, and enhancement update
2017-03-02 00:00:00
Unbreakable Enterprise kernel security update
2017-02-06 00:00:00
openvas
openvas
CentOS Update for kernel CESA-2017:0386 centos7
2017-03-07 00:00:00
RedHat Update for kernel RHSA-2017:0386-01
2017-03-03 00:00:00
openSUSE: Security Advisory for kernel (openSUSE-SU-2016:3061-1)
2016-12-09 00:00:00
centos
centos
kernel, perf, python security update
2017-03-06 15:04:15
ubuntu
ubuntu
Linux kernel (Raspberry Pi 2) vulnerabilities
2016-12-20 00:00:00
Linux kernel vulnerabilities
2016-12-20 00:00:00
Linux kernel (Xenial HWE) vulnerabilities
2016-12-20 00:00:00
mageia
mageia
Updated kernel-4.4.32 packages fixes security vulnerabilities
2016-11-26 13:41:56
Updated kernel-tmb-4.4.32 packages fix security vulnerability
2016-12-07 14:48:35
Updated kernel-linus-4.4.32 packages fix security vulnerability
2016-12-07 14:48:35
fedora
fedora
[SECURITY] Fedora 23 Update: kernel-4.8.8-100.fc23
2016-11-24 08:29:52
[SECURITY] Fedora 24 Update: kernel-4.8.6-201.fc24
2016-11-07 23:34:12
amazon
amazon
Important: kernel
2016-12-06 23:44:00
osv
osv
linux - security update
2017-01-01 00:00:00
linux - security update
2016-10-19 00:00:00
linux - security update
2016-10-20 00:00:00
cloudfoundry
cloudfoundry
USN-3161-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2017-01-31 00:00:00
ibm
ibm
debian
debian
[SECURITY] [DLA 772-1] linux security update
2017-01-01 18:24:51
[SECURITY] [DSA 3696-1] linux security update
2016-10-19 18:23:21
[SECURITY] [DSA 3696-1] linux security update
2016-10-19 18:23:21
photon
photon
Important Photon OS Security Update - PHSA-2017-0010
2017-02-02 00:00:00
nvd
nvd
prion
prion
Race condition
2016-11-16 05:59:00
Double free
2016-11-16 05:59:00
Null pointer dereference
2016-10-10 10:59:00
redhatcve
redhatcve
CVE-2016-9178
2016-11-04 11:17:24
cve
cve
debiancve
debiancve
cvelist
cvelist
ubuntucve
ubuntucve
veracode
veracode
Integer Overflow
2019-05-02 06:32:55
Privilege Escalation
2019-05-16 02:50:12
android
android
CVE-2015-8962
2016-11-01 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
Low
0.736 High
EPSS
Percentile
98.1%
Related for OPENVAS:1361412562310851449