Detections
- Plugins
- Overview
- Plugins Pipeline
- Release Notes
- Newest
- Updated
- Search
- Nessus Families
- WAS Families
- NNM Families
- Tenable OT Security Families
- About Plugin Families
- Audits
- Overview
- Newest
- Updated
- Search Audit Files
- Search Items
- References
- Authorities
- Documentation
- Download All Audit Files
- Indicators
Analytics
EulerOS 2.0 SP8 : kernel (EulerOS-SA-2022-2225)
highNessus Plugin ID 164248
Synopsis
The remote EulerOS host is missing multiple security updates.Description
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :- A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem. (CVE-2022-1012)
- An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients. (CVE-2022-1678)
- In mmc_blk_read_single of block.c, there is a possible way to read kernel heap memory due to uninitialized data. This could lead to local information disclosure if reading from an SD card that triggers errors, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:
AndroidVersions: Android kernelAndroid ID: A-216481035References: Upstream kernel (CVE-2022-20008)
- In lg_probe and related functions of hid-lg.c and other USB HID files, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if a malicious USB HID device were plugged in, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-188677105References: Upstream kernel (CVE-2022-20132)
- In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege when opening and closing inet sockets with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-112551163References: Upstream kernel (CVE-2022-20141)
- Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions. (CVE-2022-29581)
- The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag. (CVE-2022-30594)
- net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free. (CVE-2022-32250)
- The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. (CVE-2022-32296)
- kernel: race condition in perf_event_open leads to privilege escalation (CVE-2022-1729)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
Solution
Update the affected kernel packages.See Also
Plugin Details
Severity:High
ID:164248
File Name:EulerOS_SA-2022-2225.nasl
Version:1.4
Type:local
Family:Huawei Local Security Checks
Published:8/17/2022
Updated:12/26/2022
Supported Sensors:Nessus
Risk Information
VPR
Risk Factor:Critical
Score:9.5
CVSS v2
Risk Factor:High
Base Score:7.2
Temporal Score:6.3
Vector:CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source:CVE-2022-32250
CVSS v3
Risk Factor:High
Base Score:8.2
Temporal Score:7.8
Vector:CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Temporal Vector:CVSS:3.0/E:H/RL:O/RC:C
CVSS Score Source:CVE-2022-1012
Vulnerability Information
CPE:p-cpe:/a:huawei:euleros:kernel-headers,p-cpe:/a:huawei:euleros:kernel-tools-libs,p-cpe:/a:huawei:euleros:python-perf,p-cpe:/a:huawei:euleros:kernel-tools,p-cpe:/a:huawei:euleros:bpftool,p-cpe:/a:huawei:euleros:kernel-devel,p-cpe:/a:huawei:euleros:kernel,p-cpe:/a:huawei:euleros:python3-perf,p-cpe:/a:huawei:euleros:perf,cpe:/o:huawei:euleros:2.0
Required KB Items:Host/local_checks_enabled,Host/cpu,Host/EulerOS/release,Host/EulerOS/rpm-list,Host/EulerOS/sp
Excluded KB Items:Host/EulerOS/uvp_version
Exploit Available:true
Exploit Ease:Exploits are available
Patch Publication Date:8/17/2022
Vulnerability Publication Date:5/10/2022
Reference Information
CVE:CVE-2022-1012,CVE-2022-1678,CVE-2022-1729,CVE-2022-20008,CVE-2022-20132,CVE-2022-20141,CVE-2022-29581,CVE-2022-30594,CVE-2022-32250,CVE-2022-32296