Detections
Analytics

AlmaLinux 8 : virt:rhel and virt-devel:rhel (ALSA-2022:1759)

high Nessus Plugin ID 161144

Synopsis

The remote AlmaLinux host is missing one or more security updates.

Description

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:1759 advisory.

 * QEMU: virtio-net: heap use-after-free in virtio_net_receive_rcu (CVE-2021-3748)

 * ntfs-3g: Out-of-bounds heap buffer access in ntfs_get_attribute_value() due to incorrect check of bytes_in_use value in MFT records (CVE-2021-33285)

 * ntfs-3g: Heap buffer overflow triggered by a specially crafted Unicode string (CVE-2021-33286)

 * ntfs-3g: Heap buffer overflow in ntfs_attr_pread_i() triggered by specially crafted NTFS attributes (CVE-2021-33287)

 * ntfs-3g: Heap buffer overflow triggered by a specially crafted MFT section (CVE-2021-33289)

 * ntfs-3g: Heap buffer overflow triggered by a specially crafted NTFS inode pathname (CVE-2021-35266)

 * ntfs-3g: Stack buffer overflow triggered when correcting differences between MFT and MFTMirror sections (CVE-2021-35267)

 * ntfs-3g: Heap buffer overflow in ntfs_inode_real_open() triggered by a specially crafted NTFS inode (CVE-2021-35268)

 * ntfs-3g: Heap buffer overflow in ntfs_attr_setup_flag() triggered by a specially crafted NTFS attribute from MFT (CVE-2021-35269)

 * ntfs-3g: NULL pointer dereference in ntfs_extent_inode_open() (CVE-2021-39251)

 * ntfs-3g: Out-of-bounds read in ntfs_ie_lookup() (CVE-2021-39252)

 * ntfs-3g: Out-of-bounds read in ntfs_runlists_merge_i() (CVE-2021-39253)

 * ntfs-3g: Integer overflow in memmove() leading to heap buffer overflow in ntfs_attr_record_resize() (CVE-2021-39254)

 * ntfs-3g: Out-of-bounds read ntfs_attr_find_in_attrdef() triggered by an invalid attribute (CVE-2021-39255)

 * ntfs-3g: Heap buffer overflow in ntfs_inode_lookup_by_name() (CVE-2021-39256)

 * ntfs-3g: Endless recursion from ntfs_attr_pwrite() triggered by an unallocated bitmap (CVE-2021-39257)

 * ntfs-3g: Out-of-bounds reads in ntfs_attr_find() and ntfs_external_attr_find() (CVE-2021-39258)

 * ntfs-3g: Out-of-bounds access in ntfs_inode_lookup_by_name() caused by an unsanitized attribute length (CVE-2021-39259)

 * ntfs-3g: Out-of-bounds access in ntfs_inode_sync_standard_information() (CVE-2021-39260)

 * ntfs-3g: Heap buffer overflow in ntfs_compressed_pwrite() (CVE-2021-39261)

 * ntfs-3g: Out-of-bounds access in ntfs_decompress() (CVE-2021-39262)

 * ntfs-3g: Heap buffer overflow in ntfs_get_attribute_value() caused by an unsanitized attribute (CVE-2021-39263)

 * libnbd: nbdcopy: missing error handling may create corrupted destination image (CVE-2022-0485)

 * hivex: stack overflow due to recursive call of _get_children() (CVE-2021-3622)

 * nbdkit: NBD_OPT_STRUCTURED_REPLY injection on STARTTLS (CVE-2021-3716)

 * libvirt: segmentation fault during VM shutdown can lead to vdsm hang (CVE-2021-3975)

 * QEMU: NULL pointer dereference in mirror_wait_on_conflicts() in block/mirror.c (CVE-2021-4145)

 * QEMU: NULL pointer dereference in pci_write() in hw/acpi/pcihp.c (CVE-2021-4158)

 * QEMU: block: fdc: null pointer dereference may lead to guest crash (CVE-2021-20196)

Tenable has extracted the preceding description block directly from the AlmaLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://errata.almalinux.org/8/ALSA-2022-1759.html

Plugin Details

Severity: High

ID: 161144

File Name: alma_linux_ALSA-2022-1759.nasl

Version: 1.8

Type: local

Published: 5/12/2022

Updated: 1/13/2025

Supported Sensors: Continuous Assessment, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.2

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Temporal Score: 6

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2021-39263

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 7.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:alma:linux:libvirt-docs, p-cpe:/a:alma:linux:swtpm-devel, p-cpe:/a:alma:linux:swtpm-libs, p-cpe:/a:alma:linux:libguestfs-man-pages-uk, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-disk, p-cpe:/a:alma:linux:libvirt-daemon-driver-nwfilter, p-cpe:/a:alma:linux:perl-sys-guestfs, cpe:/o:alma:linux:8, p-cpe:/a:alma:linux:libvirt-nss, p-cpe:/a:alma:linux:swtpm-tools-pkcs11, p-cpe:/a:alma:linux:hivex, p-cpe:/a:alma:linux:libvirt-wireshark, p-cpe:/a:alma:linux:nbdkit-server, p-cpe:/a:alma:linux:libiscsi, p-cpe:/a:alma:linux:qemu-kvm, p-cpe:/a:alma:linux:perl-hivex, p-cpe:/a:alma:linux:nbdkit-tar-plugin, p-cpe:/a:alma:linux:virt-v2v-bash-completion, p-cpe:/a:alma:linux:supermin-devel, p-cpe:/a:alma:linux:sgabios, p-cpe:/a:alma:linux:swtpm-tools, p-cpe:/a:alma:linux:libguestfs, p-cpe:/a:alma:linux:qemu-kvm-block-iscsi, p-cpe:/a:alma:linux:qemu-kvm-common, p-cpe:/a:alma:linux:libvirt-daemon-driver-secret, p-cpe:/a:alma:linux:qemu-kvm-ui-spice, p-cpe:/a:alma:linux:qemu-kvm-hw-usbredir, p-cpe:/a:alma:linux:nbdkit-curl-plugin, p-cpe:/a:alma:linux:sgabios-bin, p-cpe:/a:alma:linux:seavgabios-bin, p-cpe:/a:alma:linux:netcf, p-cpe:/a:alma:linux:libvirt-daemon-driver-nodedev, p-cpe:/a:alma:linux:seabios-bin, p-cpe:/a:alma:linux:virt-dib, p-cpe:/a:alma:linux:python3-libvirt, p-cpe:/a:alma:linux:libvirt-dbus, p-cpe:/a:alma:linux:libvirt-daemon-driver-qemu, p-cpe:/a:alma:linux:libvirt-client, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-rbd, p-cpe:/a:alma:linux:libvirt-libs, p-cpe:/a:alma:linux:nbdkit-xz-filter, p-cpe:/a:alma:linux:hivex-devel, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-gluster, p-cpe:/a:alma:linux:libguestfs-javadoc, p-cpe:/a:alma:linux:libvirt-daemon, p-cpe:/a:alma:linux:libnbd, p-cpe:/a:alma:linux:nbdkit-example-plugins, p-cpe:/a:alma:linux:nbdkit-python-plugin, p-cpe:/a:alma:linux:nbdkit-vddk-plugin, p-cpe:/a:alma:linux:libguestfs-tools-c, p-cpe:/a:alma:linux:qemu-kvm-block-ssh, p-cpe:/a:alma:linux:nbdkit-basic-filters, p-cpe:/a:alma:linux:swtpm, p-cpe:/a:alma:linux:nbdfuse, p-cpe:/a:alma:linux:libguestfs-java-devel, p-cpe:/a:alma:linux:libvirt-daemon-config-network, p-cpe:/a:alma:linux:libguestfs-man-pages-ja, p-cpe:/a:alma:linux:qemu-img, p-cpe:/a:alma:linux:ruby-libguestfs, p-cpe:/a:alma:linux:nbdkit, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-logical, p-cpe:/a:alma:linux:libiscsi-devel, p-cpe:/a:alma:linux:nbdkit-ssh-plugin, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-core, p-cpe:/a:alma:linux:python3-libguestfs, p-cpe:/a:alma:linux:libguestfs-gfs2, p-cpe:/a:alma:linux:qemu-kvm-ui-opengl, p-cpe:/a:alma:linux:libnbd-bash-completion, p-cpe:/a:alma:linux:libguestfs-gobject, p-cpe:/a:alma:linux:python3-hivex, p-cpe:/a:alma:linux:lua-guestfs, p-cpe:/a:alma:linux:libvirt-daemon-driver-network, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-iscsi, p-cpe:/a:alma:linux:libtpms-devel, p-cpe:/a:alma:linux:libguestfs-winsupport, p-cpe:/a:alma:linux:libguestfs-appliance, p-cpe:/a:alma:linux:qemu-guest-agent, p-cpe:/a:alma:linux:virt-v2v-man-pages-uk, p-cpe:/a:alma:linux:nbdkit-devel, p-cpe:/a:alma:linux:python3-libnbd, p-cpe:/a:alma:linux:ruby-hivex, p-cpe:/a:alma:linux:nbdkit-tar-filter, p-cpe:/a:alma:linux:supermin, p-cpe:/a:alma:linux:nbdkit-bash-completion, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-iscsi-direct, p-cpe:/a:alma:linux:libvirt, p-cpe:/a:alma:linux:libguestfs-gobject-devel, p-cpe:/a:alma:linux:netcf-devel, p-cpe:/a:alma:linux:qemu-kvm-block-gluster, p-cpe:/a:alma:linux:qemu-kvm-block-rbd, p-cpe:/a:alma:linux:libnbd-devel, p-cpe:/a:alma:linux:libguestfs-tools, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-scsi, p-cpe:/a:alma:linux:libvirt-devel, p-cpe:/a:alma:linux:libguestfs-xfs, p-cpe:/a:alma:linux:nbdkit-linuxdisk-plugin, p-cpe:/a:alma:linux:qemu-kvm-docs, p-cpe:/a:alma:linux:libguestfs-java, p-cpe:/a:alma:linux:libguestfs-bash-completion, p-cpe:/a:alma:linux:libtpms, p-cpe:/a:alma:linux:libvirt-daemon-config-nwfilter, p-cpe:/a:alma:linux:libvirt-daemon-kvm, p-cpe:/a:alma:linux:nbdkit-tmpdisk-plugin, p-cpe:/a:alma:linux:nbdkit-nbd-plugin, p-cpe:/a:alma:linux:libguestfs-devel, p-cpe:/a:alma:linux:virt-v2v-man-pages-ja, p-cpe:/a:alma:linux:libvirt-daemon-driver-storage-mpath, p-cpe:/a:alma:linux:libiscsi-utils, p-cpe:/a:alma:linux:libguestfs-inspect-icons, p-cpe:/a:alma:linux:libvirt-daemon-driver-interface, p-cpe:/a:alma:linux:libguestfs-rsync, p-cpe:/a:alma:linux:qemu-kvm-block-curl, p-cpe:/a:alma:linux:virt-v2v, p-cpe:/a:alma:linux:libvirt-lock-sanlock, p-cpe:/a:alma:linux:nbdkit-basic-plugins, p-cpe:/a:alma:linux:nbdkit-gzip-plugin, p-cpe:/a:alma:linux:perl-sys-virt, p-cpe:/a:alma:linux:seabios, p-cpe:/a:alma:linux:netcf-libs, p-cpe:/a:alma:linux:libguestfs-rescue, p-cpe:/a:alma:linux:nbdkit-gzip-filter, p-cpe:/a:alma:linux:qemu-kvm-core

Required KB Items: Host/local_checks_enabled, Host/AlmaLinux/release, Host/AlmaLinux/rpm-list, Host/cpu

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 5/10/2022

Vulnerability Publication Date: 5/26/2021

Reference Information

CVE: CVE-2021-20196, CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-3622, CVE-2021-3716, CVE-2021-3748, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE-2021-39254, CVE-2021-39255, CVE-2021-39256, CVE-2021-39257, CVE-2021-39258, CVE-2021-39259, CVE-2021-39260, CVE-2021-39261, CVE-2021-39262, CVE-2021-39263, CVE-2021-3975, CVE-2021-4145, CVE-2021-4158, CVE-2022-0485

IAVB: 2022-B-0051-S