pepelyaevip/vuln-list-alt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
ec0af3a1b9
vuln-list-alt/oval/p9/ALT-PU-2017-2375/definitions.json
pepelyaevip 56bb29c44b ALT Vulnerability
2024-06-28 13:17:52 +00:00

182 lines
7.4 KiB
JSON
Raw Blame History

{
"Definition": [
{
"ID": "oval:org.altlinux.errata:def:20172375",
"Version": "oval:org.altlinux.errata:def:20172375",
"Class": "patch",
"Metadata": {
"Title": "ALT-PU-2017-2375: package `kernel-image-std-def` update to version 4.9.53-alt1",
"AffectedList": [
{
"Family": "unix",
"Platforms": [
"ALT Linux branch p9"
],
"Products": [
"ALT Server",
"ALT Virtualization Server",
"ALT Workstation",
"ALT Workstation K",
"ALT Education",
"Simply Linux",
"Starterkit"
]
}
],
"References": [
{
"RefID": "ALT-PU-2017-2375",
"RefURL": "https://errata.altlinux.org/ALT-PU-2017-2375",
"Source": "ALTPU"
},
{
"RefID": "CVE-2017-1000252",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000252",
"Source": "CVE"
},
{
"RefID": "CVE-2017-12153",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2017-12153",
"Source": "CVE"
},
{
"RefID": "CVE-2017-12154",
"RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2017-12154",
"Source": "CVE"
}
],
"Description": "This update upgrades kernel-image-std-def to version 4.9.53-alt1. \nSecurity Fix(es):\n\n * CVE-2017-1000252: The KVM subsystem in the Linux kernel through 4.13.3 allows guest OS users to cause a denial of service (assertion failure, and hypervisor hang or crash) via an out-of bounds guest_irq value, related to arch/x86/kvm/vmx.c and virt/kvm/eventfd.c.\n\n * CVE-2017-12153: A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_NET_ADMIN capability and may result in a NULL pointer dereference and system crash.\n\n * CVE-2017-12154: The prepare_vmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the \"CR8-load exiting\" and \"CR8-store exiting\" L0 vmcs02 controls exist in cases where L1 omits the \"use TPR shadow\" vmcs12 control, which allows KVM L2 guest OS users to obtain read and write access to the hardware CR8 register.",
"Advisory": {
"From": "errata.altlinux.org",
"Severity": "High",
"Rights": "Copyright 2024 BaseALT Ltd.",
"Issued": {
"Date": "2017-10-05"
},
"Updated": {
"Date": "2017-10-05"
},
"BDUs": null,
"CVEs": [
{
"ID": "CVE-2017-1000252",
"CVSS": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
"CVSS3": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-20",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2017-1000252",
"Impact": "Low",
"Public": "20170926"
},
{
"ID": "CVE-2017-12153",
"CVSS": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"CVSS3": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"CWE": "CWE-476",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2017-12153",
"Impact": "Low",
"Public": "20170921"
},
{
"ID": "CVE-2017-12154",
"CVSS": "AV:L/AC:L/Au:N/C:P/I:P/A:N",
"CVSS3": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"CWE": "NVD-CWE-noinfo",
"Href": "https://nvd.nist.gov/vuln/detail/CVE-2017-12154",
"Impact": "High",
"Public": "20170926"
}
],
"AffectedCPEs": {
"CPEs": [
"cpe:/o:alt:kworkstation:9",
"cpe:/o:alt:workstation:9",
"cpe:/o:alt:server:9",
"cpe:/o:alt:server-v:9",
"cpe:/o:alt:education:9",
"cpe:/o:alt:slinux:9",
"cpe:/o:alt:starterkit:p9",
"cpe:/o:alt:kworkstation:9.1",
"cpe:/o:alt:workstation:9.1",
"cpe:/o:alt:server:9.1",
"cpe:/o:alt:server-v:9.1",
"cpe:/o:alt:education:9.1",
"cpe:/o:alt:slinux:9.1",
"cpe:/o:alt:starterkit:9.1",
"cpe:/o:alt:kworkstation:9.2",
"cpe:/o:alt:workstation:9.2",
"cpe:/o:alt:server:9.2",
"cpe:/o:alt:server-v:9.2",
"cpe:/o:alt:education:9.2",
"cpe:/o:alt:slinux:9.2",
"cpe:/o:alt:starterkit:9.2"
]
}
}
},
"Criteria": {
"Operator": "AND",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:1001",
"Comment": "ALT Linux must be installed"
}
],
"Criterias": [
{
"Operator": "OR",
"Criterions": [
{
"TestRef": "oval:org.altlinux.errata:tst:20172375001",
"Comment": "kernel-doc-std is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375002",
"Comment": "kernel-headers-modules-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375003",
"Comment": "kernel-headers-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375004",
"Comment": "kernel-image-domU-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375005",
"Comment": "kernel-image-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375006",
"Comment": "kernel-modules-drm-nouveau-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375007",
"Comment": "kernel-modules-drm-radeon-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375008",
"Comment": "kernel-modules-drm-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375009",
"Comment": "kernel-modules-ide-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375010",
"Comment": "kernel-modules-kvm-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375011",
"Comment": "kernel-modules-staging-std-def is earlier than 1:4.9.53-alt1"
},
{
"TestRef": "oval:org.altlinux.errata:tst:20172375012",
"Comment": "kernel-modules-v4l-std-def is earlier than 1:4.9.53-alt1"
}
]
}
]
}
}
]
}
Reference in New Issue View Git Blame Copy Permalink